Page 1 Quidway S7700 Smart Routing Switch V100R006C00 Configuration Guide - VPN Issue Date 2011-07-15 HUAWEI TECHNOLOGIES CO., LTD.
Page 2 All other trademarks and trade names mentioned in this document are the property of their respective holders. Notice The purchased products, services and features are stipulated by the contract made between Huawei and the customer. All or part of the products, services and features described in this document may not be within the purchase scope or the usage scope.
Page 3: About This Document
NOTE S7700 is controlled by the license. By default, the MPLS function is disabled on the S7700. To use the MPLS function of the S7700,buy the license from the Huawei local office. This document is intended for: Data configuration engineers...
Page 4: Command Conventions
Quidway S7700 Smart Routing Switch Configuration Guide - VPN About This Document Command Conventions The command conventions that may be found in this document are defined as follows. Convention Description Boldface The keywords of a command line are in boldface.
Page 5: Table Of Contents
Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents Contents About This Document........................ii 1 VPN Tunnel Management Configuration................1 1.1 Introduction to VPN Tunnels..........................3 1.2 VPN Tunnel Features Supported by the S7700....................4 1.3 Configuring a Tunnel Interface..........................5 1.3.1 Establishing the Configuration Task......................6 1.3.2 Creating Tunnel Interfaces........................6...
Page 6 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 1.8.2 Debugging a Tunnel..........................29 1.9 Configuration Examples...........................29 1.9.1 Example for Configuring Tunnel Policies for the L3VPN..............29 1.9.2 Example for Binding a Tunnel to the Martini L2VPN................42 2 GRE Configuration........................57 2.1 Introduction to GRE............................59 2.2 GRE Features Supported by the S7700......................59...
Page 7 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 3.4 Configuring Basic BGP/MPLS IP VPN......................105 3.4.1 Establishing the Configuration Task.....................105 3.4.2 Configuring a VPN Instance........................106 3.4.3 Binding an Interface with a VPN Instance....................106 3.4.4 Configuring MP-IBGP Between PEs....................107 3.4.5 Configuring a Routing Protocol Between a PE and a CE..............108 3.4.6 Checking the Configuration........................117...
Page 8 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 3.10.3 Configuring the OSPF Multi-Instance on the Multi-Instance CE............143 3.10.4 Canceling the Loop Detection on the Multi-Instance CE..............144 3.10.5 Checking the Configuration.........................144 3.11 Connecting VPN and the Internet.........................145 3.11.1 Establishing the Configuration Task....................145 3.11.2 Configuring the Static Route on the CE....................146...
Page 9 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 3.17.2 Example for Configuring Overlapping Addresses in Two BGP/MPLS IP VPNs......186 3.17.3 Example for Configuring Mutual Access Between VPNs on S7700..........196 3.17.4 Example for Configuring Mutual Access for Local VPNs on SPU Board.........201 3.17.5 Example for Configuring BGP ASN Substitution................204...
Page 10 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 4.6.3 Applying the Tunnel Policy to the IPv6 VPN..................350 4.6.4 Checking the Configuration........................350 4.7 Configuring Inter-AS IPv6 VPN-Option A....................351 4.7.1 Establishing the Configuration Task.....................351 4.7.2 Configuring Inter-AS IPv6 VPN Option A...................352 4.7.3 Checking the Configuration........................353...
Page 11 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 5.3.3 Creating a Local CCC Connection......................455 5.3.4 Creating a Remote CCC Connection.....................456 5.3.5 Checking the Configuration........................457 5.4 Configuring the SVC VLL..........................458 5.4.1 Establishing the Configuration Task.....................458 5.4.2 Enabling MPLS L2VPN........................459 5.4.3 Creating an SVC VLL Connection......................459...
Page 12 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 5.10.6 Debugging VLL...........................487 5.10.7 Checking Connectivity of the VLL Network..................488 5.11 Configuration Examples..........................489 5.11.1 Example for Configuring a Local CCC Connection................489 5.11.2 Example for Configuring a Remote CCC Connection................493 5.11.3 Example for Configuring an SVC VLL....................499 5.11.4 Example for Configuring a Martini VLL....................505...
Page 13 7.3.1 Establishing the Configuration Task.....................681 7.3.2 Enabling the BGP Peer to Exchange VPLS Information..............682 7.3.3 Creating a VSI and Configuring BGP Signaling...................683 7.3.4 (Optional) Configuring Huawei Devices to Communicate with Non-Huawei Devices......685 7.3.5 Binding the VSI to an AC Interface......................686 Issue 01 (2011-07-15) Huawei Proprietary and Confidential Copyright ©...
Page 14 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 7.3.6 (Optional) Configuring the Features of Kompella VPLS..............688 7.3.7 Checking the Configuration........................689 7.4 Configuring Martini VPLS..........................691 7.4.1 Establishing the Configuration Task.....................691 7.4.2 Creating a VSI and Configuring LDP Signaling...................692 7.4.3 Binding the VSI to an AC Interface......................693 7.4.4 Checking the Configuration........................695...
Page 15 Quidway S7700 Smart Routing Switch Configuration Guide - VPN Contents 7.12.1 Collecting the Statistics of the Traffic on a VPLS PW...............724 7.12.2 Checking the Traffic on a VPLS PW....................725 7.12.3 Clearing the Traffic Statistics......................725 7.12.4 Checking the Consistency of VPN Configurations(Service Ping)............726 7.12.5 Debugging VPLS..........................726...
Page 16: Vpn Tunnel Management Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration VPN Tunnel Management Configuration About This Chapter VPN tunnel management involves the creation, management, and maintenance of VPN tunnels. 1.1 Introduction to VPN Tunnels This part briefly introduces VPN tunnels, including such commonly-used VPN tunnels as LSPs, TE tunnels, and GRE tunnels, and the configuration and management of these VPN tunnels.
Page 17 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration This section provides examples for applying a tunnel policy to the L3VPN or L2VPN. Issue 01 (2011-07-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd.
Page 18: Introduction To Vpn Tunnels
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration 1.1 Introduction to VPN Tunnels This part briefly introduces VPN tunnels, including such commonly-used VPN tunnels as LSPs, TE tunnels, and GRE tunnels, and the configuration and management of these VPN tunnels.
Page 19: Vpn Tunnel Features Supported By The S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration 1.2 VPN Tunnel Features Supported by the S7700 The S7700 supports such VPN tunnel features as the select-sequence tunnel policy and tunnel binding policy. An application (such as VPN) selects tunnels according to the tunnel policy. If no tunnel policy is configured, the tunnel management module selects the tunnel according to the default tunnel policy.
Page 20: Configuring A Tunnel Interface
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration NOTE In IPv4 VPN networking, you can configure a maximum of six tunnels for load balancing. And in IPv6 VPN networking,the S7700 does not support load balancing by tunnels, that is, the number of tunnels for load balancing is 1.
Page 21: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration 1.3.1 Establishing the Configuration Task Before configuring a tunnel interface, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task quickly and accurately.
Page 22: Configuring A Tunnel
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration The system view is displayed. Step 2 Run: interface tunnel interface-number A tunnel interface is created. When creating the tunnel interfaces, you are recommended to set the slot numbers of the tunnel interfaces the same as the slot number of the interface sending the packets, that is, the interface at the source end.
Page 23: Checking The Configuration
Run the ip address unnumbered interface interface-type interface-number command to configure IP unnumbered on the tunnel interface. NOTE For details, refer to the chapter "IP Addresses Configuration" in the Quidway S7700 Smart Routing Switch Configuration Guide - IP Services. ----End 1.3.4 Checking the Configuration...
Page 24: Configuring Tunnel Policies Applied To L3Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Last line protocol up time : 2008-02-09 17:05:25 UTC-05:00 Description:HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port,The Maximum Transmit Unit is 1500 Internet Address is unnumbered, using address of LoopBack0(9.9.9.9/32) Encapsulation is TUNNEL, loopback not set Tunnel destination 6.6.6.6...
Page 25: Configuring A Tunnel Policy
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Applicable Environment By default, the system selects LSPs for a VPN and no load balancing is performed. If load balancing or other types of tunnels are required, you need to configure a tunnel policy and apply the tunnel policy.
Page 26: Applying The Tunnel Policy To L3Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Step 2 Run: tunnel-policy policy-name A tunnel policy is created and the tunnel policy view is displayed. A tunnel policy indicates only one tunnel selection mode. If more tunnel selection modes are required, you need to create multiple tunnel policies.
Page 27 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Procedure Run the display tunnel-policy tunnel-policy-name command to check configuration of the tunnel policy. Run the display ip vpn-instance verbose [ vpn-instance-name ] command to check tunnel policy of the VPN instance.
Page 28: Configuring Tunnel Policies Applied To L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Run the display tunnel-info tunnel-id tunnel-id command, and you can view detailed information about a specified tunnel. For example: [Quidway] display tunnel-info tunnel-id 10005 Tunnel ID:...
Page 29: Configuring A Tunnel Policy
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Data Name of the tunnel policy Priority of tunnels Number of tunnels participating in load balancing Type and serial number of the VC interface on which the tunnel policy needs to be applied 1.5.2 Configuring a Tunnel Policy...
Page 30: Applying The Tunnel Policy To L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration is not selected in most cases, exceptthat load balancing is performed or the preceding tunnels are in the Down state. For example, if the tunnel select-seq cr-lsp lsp load-balance-number 1 command is configured, a VPN selects the LSP tunnel if no CR-LSP exists.
Page 31 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Run: interface interface-type interface-number The view of the interface connected with the CE is displayed. Run: mpls l2vc ip-address vc-id tunnel-policy policy-name A tunnel policy is applied to the VC of the VLL in Martini mode.
Page 32: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Applying a tunnel policy to VPLS in Kompella mode Do as follows on the PEs at both ends of a PW: Run: system-view The system view is displayed.
Page 33 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Procedure Run the display tunnel-policy tunnel-policy-name. command to check the configuration of a tunnel policy. Run the display mpls l2vc [ interface interface-type interface-number ]. command to check the information about the tunnel used by the VC in L2VPN in SVC, PWE3, or Martini mode.
Page 34: Configuring L3Vpn Tunnel Binding
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration create time : 0 days, 2 hours, 0 minutes, 12 seconds up time : 0 days, 2 hours, 0 minutes, 12 seconds last change time : 0 days, 2 hours, 0 minutes, 12 seconds...
Page 35: Enabling The Vpn Binding For A Tunnel
Configuring basic MPLS functions and enabling MPLS TE Configuring the MPLS TE tunnels between PEs (refer to the Quidway S7700 Smart Routing Switch Configuration Guide - MPLS). Configuring the VPN instance on the PE (refer to the chapter "3 BGP MPLS IP VPN...
Page 36: Configuring The Vpn Binding Of The Tunnel Policy
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration The VPN binding for the tunnel is enabled. The tunnel policy in select-sequence mode cannot use the tunnel enabled with the VPN binding. Step 4 Run: mpls te commit The current configuration is validated.
Page 37: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Context Different VPN services to the same destination on a PE must apply different tunnel policies, and be bound with different TE tunnels. Procedure Step 1 Run: system-view The system view is displayed.
Page 38 Tunnel1/0/0 current state : UP Line protocol current state : UP Last line protocol up time : 2009-02-23 10:54:40 Description : HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port,The Maximum Transmit Unit is 1500 Internet Address is unnumbered, using address of LoopBack1(1.1.1.9/32) Encapsulation is TUNNEL, loopback not set Tunnel destination 2.2.2.9...
Page 39: Configuring L2Vpn Tunnel Binding
Configuring the static route or IGP to ensure that routes are reachable to all nodes Configuring basic MPLS functions and enabling MPLS TE Configuring the MPLS TE tunnels between PEs (refer to the Quidway S7700 Smart Routing Switch Configuration Guide - MPLS Creating the VC on the PE (refer to the chapter "MPLS L2VPN Configuration"...
Page 40: Enabling The Vpn Binding For A Tunnel
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration 1.7.2 Enabling the VPN Binding for a Tunnel A tunnel can be bound to a VPN only after VPN tunnel binding is enabled. Context Only the tunnel enabled with the VPN binding can be bound with the VPN.
Page 41: Applying The Tunnel Policy To The Martini L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration A tunnel policy is created. Step 3 Run: tunnel binding destination dest-ip-address te tunnel interface-number [ down- switch ] The peer address is bound with the tunnel policy. The VPN data from the local end are transmitted through the bound tunnel to the destination address.
Page 42 Tunnel1/0/0 current state : UP Line protocol current state : UP Last line protocol up time : 2009-02-23 10:54:40 Description : HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port,The Maximum Transmit Unit is 1500 Internet Address is unnumbered, using address of LoopBack1(1.1.1.9/32) Encapsulation is TUNNEL, loopback not set Tunnel destination 2.2.2.9...
Page 43: Maintaining A Vpn Tunnel
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration AC status : up VC state : up VC ID : 116119 VC type : VLAN destination : 6.6.6.6 local VC label : 23552 remote VC label...
Page 44: Debugging A Tunnel
For the procedure of outputting the debugging information, refer to Information Center Configuration. For the description about the debugging commands, refer to the Quidway S7700 Smart Routing Switch Debugging Reference. Procedure Run the debugging tunnel all [ interface tunnel interface-number ] command in the user view to enable tunnel debugging.
Page 45 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Figure 1-2 Networking diagram for configuring the tunnel policy for the L3VPN VPNA VPNA GE1/0/3 GE1/0/3 Loopback1 Loopback1 MPLS TE tunnel 1/0/1 2.2.2.2/32 1.1.1.1/32 GE1/0/3 MPLS TE tunnel 1/0/2 ( binding)
Page 46 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Configure tunnel policies and apply the tunnel policies to the VPN instances. Configure MP-IBGP for exchanging routing information between the VPNs. Data Preparation To complete the configuration, you need the following data:...
Page 47 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration # Take the display on PE1 as an example: [PE1] display ip routing-table Route Flags: R - relied, D - download to fib ------------------------------------------------------------------------------ Routing Tables: Public...
Page 48 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration ------------------------------------------------------------------------------- TOTAL: 3 Normal LSP(s) Found. TOTAL: 0 Liberal LSP(s) Found. TOTAL: 0 Frr LSP(s) Found. A '*' before an LSP means the LSP is not established...
Page 49 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration # Enable OSPF on the devices along the TE tunnel so that the devices can transmit TE attributes. # Configure PE1. [PE1] ospf 1 [PE1-ospf-1] opaque-capability enable [PE1-ospf-1] area 0 [PE1-ospf-1-area-0.0.0.0] mpls-te enable...
Page 50 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration # Configure PE2. [PE2] ip vpn-instance VPNA [PE2-vpn-instance-VPNA] route-distinguisher 100:3 [PE2-vpn-instance-VPNA] vpn-target 111:1 both [PE2-vpn-instance-VPNA] quit [PE2] ip vpn-instance VPNB [PE2-vpn-instance-VPNB] route-distinguisher 100:4 [PE2-vpn-instance-VPNB] vpn-target 222:2 both...
Page 51 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration [PE2] tunnel-policy policy2 [PE2-tunnel-policy-policy2] tunnel select-seq cr-lsp lsp load-balance-number 1 [PE2-tunnel-policy-policy2] quit [PE2] ip vpn-instance VPNB [PE2-vpn-instance-VPNB] tnl-policy policy2 [PE2-vpn-instance-VPNB] quit Step 6 Set up MP-IBGP adjacency between the PEs.
Page 52 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration [CE3] bgp 65420 [CE3-bgp] peer 10.3.1.2 as-number 100 [CE3-bgp] quit # Configure CE4 [CE4] bgp 65420 [CE4-bgp] peer 10.4.1.2 as-number 100 [CE4-bgp] quit Step 8 Verify the configuration.
Page 53 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration RelayNextHop: 0.0.0.0 Interface: Tunnel1/0/1 Tunnel ID: 0x1001c # The CEs in the same VPN can ping each other, and the CEs in different VPNs cannot ping each other.
Page 54 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration ip address unnumbered interface loopback1 tunnel-protocol mpls te destination 2.2.2.2 mpls te tunnel-id 11 mpls te commit interface Tunnel1/0/2 ip address unnumbered interface loopback1 tunnel-protocol mpls te destination 2.2.2.2...
Page 55 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration mpls te cspf mpls ldp interface Vlanif10 ip address 100.1.1.2 255.255.255.252 mpls mpls te mpls rsvp-te mpls ldp interface Vlanif40 ip binding vpn-instance VPNB ip address 10.4.1.2 255.255.255.252...
Page 56 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration area 0.0.0.0 network 100.1.1.0 0.0.0.3 network 2.2.2.2 0.0.0.0 mpls-te enable tunnel-policy policy1 tunnel binding destination 1.1.1.1 te Tunnel1/0/2 tunnel-policy policy2 tunnel select-seq cr-lsp lsp load-balance-number 1...
Page 57: Example For Binding A Tunnel To The Martini L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration bgp 65420 peer 10.3.1.2 as-number 100 ipv4-family unicast undo synchronization peer 10.3.1.2 enable return Configuration file of CE4 sysname CE4 vlan batch 40 interface Vlanif 40 ip address 10.4.1.1 255.255.255.252...
Page 58 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Figure 1-3 Networking diagram for configuring the L2VPN tunnel binding Loopback1 2.2.2.9/32 VPNA VLAN2 GE 1/0/1 GE 1/0/2 GE 1/0/1 Loopback1 Loopback1 Site2 1.1.1.9/32 4.4.4.9/32 GE 1/0/1...
Page 59 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Configuration Roadmap The configuration roadmap is as follows: Configure a TE tunnel. Configure a tunnel policy to bind the IP address of the remote end to the tunnel.
Page 60 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration <Quidway> system-view [Quidway] sysname P [P] vlan batch 5 6 7 [P]interface gigabitethernet 1/0/1 [P-GigabitEthernet1/0/1] port hybrid pvid vlan 7 [P-GigabitEthernet1/0/1] port hybrid tagged vlan 7...
Page 61 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Step 2 Configure the basic MPLS capability, set up the LDP peers, and enable MPLS TE, Resource Reservation Protocol-TE (RSVP-TE), and Constraint Shortest Path First (CSPF).
Page 62 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration PeerID Status SsnRole SsnAge KASent/Rcv ------------------------------------------------------------------------------ 2.2.2.9:0 Operational DU Passive 0000:00:33 3.3.3.9:0 Operational DU Passive 0000:00:42 ------------------------------------------------------------------------------ TOTAL: 2 session(s) Found. Step 3 Configure IS-IS TE.
Page 63 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration [PE1-Tunnel2/0/0] mpls te commit [PE1-Tunnel2/0/0] quit # Configure PE2. [PE2] interface tunnel 1/0/0 [PE2-Tunnel1/0/0] ip address unnumbered interface loopback 1 [PE2-Tunnel1/0/0] tunnel-protocol mpls te [PE2-Tunnel1/0/0] destination 1.1.1.9...
Page 64 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration [PE1-Vlanif10] mpls l2vc 2.2.2.9 100 tunnel-policy policy1 [PE1-Vlanif10] quit # Configure PE1. Bind PE1 to Tunnel2. [PE1] interface tunnel 2/0/0 [PE1-Tunnel2/0/0] mpls te reserved-for-binding [PE1-Tunnel2/0/0] mpls te commit...
Page 65 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration [CE1-Vlanif4] ip address 20.1.1.1 24 [CE1-Vlanif4] quit Step 8 Verify the configuration. # Check the VC status on PE1. All the VCs on PE1 are Up.
Page 66 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration # Check information about the interfaces on the bound tunnel. # Take Tunnel 1/0/0 of PE1 as an example. [PE1-Tunnel1/0/0] display this interface Tunnel1/0/0 current state : UP...
Page 67 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration Configuration Files Configuration file of PE1 sysname PE1 vlan batch 4 7 10 mpls lsr-id 1.1.1.9 mpls mpls te mpls rsvp-te mpls te cspf mpls l2vpn...
Page 68 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration interface Tunnel1/0/0 ip address unnumbered interface LoopBack1 tunnel-protocol mpls te destination 2.2.2.9 mpls te tunnel-id 100 mpls te path explicit-path pe1tope2 mpls te reserved-for-binding mpls te commit...
Page 69 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration port hybrid pvid vlan 5 port hybrid tagged vlan 5 interface GigabitEthernet1/0/3 port hybrid pvid vlan 6 port hybrid tagged vlan 6 interface LoopBack1 ip address 4.4.4.9 255.255.255.255...
Page 70 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration tunnel binding destination 1.1.1.9 te tunnel1/0/0 return Configuration file of PE3 sysname PE3 vlan batch 3 6 mpls lsr-id 3.3.3.9 mpls mpls te mpls rsvp-te mpls te cspf...
Page 71 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 1 VPN Tunnel Management Configuration interface Vlanif4 ip address 20.1.1.1 255.255.255.0 interface Vlanif10 ip address 10.1.1.1 255.255.255.0 interface GigabitEthernet1/0/2 port link-type trunk port trunk allow-pass vlan 10 interface GigabitEthernet1/0/3 port link-type trunk...
Page 72: Gre Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration GRE Configuration About This Chapter Generic Routing Encapsulation (GRE) encapsulates the packets of certain network layer protocols such as Internetwork Packet Exchange (IPX), Asynchronous Transfer Mode (ATM), IPv6, and AppleTalk so that the encapsulated packets can be transmitted over the IPv4 network.
Page 73 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Familiarize yourself with the configuration procedures against the networking diagrams. This chapter provides networking requirements, configuration notes, and configuration roadmap in configurations examples. Issue 01 (2011-07-15) Huawei Proprietary and Confidential...
Page 74: Introduction To Gre
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration 2.1 Introduction to GRE The transmission of packets in a GRE tunnel involves two processes: encapsulation and decapsulation. After receiving a packet of a certain network layer protocol such as IPX that needs to be encapsulated and routed, the system adds a GRE header to the packet, and then encapsulates the packet into a packet of another protocol such as IP.
Page 75 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration The tunnel between Switch A and Switch B adopts the GRE protocol, so that Group 1 communicates with Group 2 without affecting the communication between Team 1 and Team...
Page 76: Configuring Gre
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration paths (LSPs) as the public network tunnel. If the core switch (P) in the backbone network, however, provides only the IP function without the MPLS function when the PE at the network edge has the MPLS function, the LSP cannot be used as the public network tunnel.
Page 77 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Context Do as follows on switchs on the two ends of a tunnel: Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: interface tunnel interface-number A tunnel interface is created and the tunnel interface view is displayed.
Page 78: Configuring Routes For The Tunnel
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration By default, the network address of a tunnel interface is not set. ----End 2.3.3 Configuring Routes for the Tunnel Routes for a tunnel must be available on both the source and destination devices so that packets encapsulated with GRE can be forwarded properly.
Page 79: Checking The Configuration
Tunnel1/0/0 current state : UP Line protocol current state : UP Last line protocol up time : 2009-03-19 18:38:07 Description : HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port, The Maximum Transmit Unit is 1500 bytes Internet Address is 40.1.1.1/24 Encapsulation is TUNNEL, loopback not set Tunnel source 20.1.1.1 (Loopback1), destination 30.1.1.2...
Page 80: Configuring A Gre Tunnel Between Ce And Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Output queue : (Urgent queue : Size/Length/Discards) 0/50/0 Output queue : (Protocol queue : Size/Length/Discards) 0/1000/0 Output queue : (FIFO queue : Size/Length/Discards) 0/256/0 300 seconds input rate 31776024 bytes/sec, 31776152 packets/sec...
Page 81: Configuring The Gre Tunnel Interface On Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Applicable Environment To allow users of the CE that is not directly connected with a PE to access the Multi-Protocol Label Switching (MPLS) VPN, configure a GRE tunnel and create routes between them and configure MPLS VPN on the PE.
Page 82: Configuring The Gre Tunnel Interface On Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Step 3 Run: tunnel-protocol gre The tunnel is encapsulated as a GRE tunnel. Step 4 Run: The source address or source interface of the tunnel interface is configured.
Page 83: Binding The Gre Tunnel With The Vpn To Which Ce Belongs On Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration tunnel-protocol gre The tunnel is encapsulated as a GRE tunnel. Step 4 Run: source { source-ip-address | interface-type interface-number } The source address or source interface of the tunnel interface is configured.
Page 84: Checking The Configuration
Tunnel1/0/0 current state : UP Line protocol current state : UP Last line protocol up time : 2009-04-19 18:38:07 Description : HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port,The Maximum Transmit Unit is 1500 Internet Address is 40.1.1.1/24 Issue 01 (2011-07-15) Huawei Proprietary and Confidential Copyright ©...
Page 85: Configuring The Keepalive Function
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Encapsulation is TUNNEL, loopback not set Tunnel source 20.1.1.1 (loopback1), destination 30.1.1.2 Tunnel protocol/transport GRE/IP, key disabled keepalive disabled Checksumming of packets disabled QoS max-bandwidth : 64 Kbps...
Page 86: Enabling The Keepalive Function
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Pre-configuration Tasks Before configuring the Keepalive function, complete the following tasks: Configuring the link layer attributes of the interfaces Assigning IP addresses to the interfaces Establishing the GRE tunnel and keeping the tunnel Up Data Preparation To configure the Keepalive function, you need the following data.
Page 87: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Before configuring the tunnel policy and the GRE tunnel for the VPN, enable the Keepalive function for the GRE tunnel. In this manner, the VPN does not select the GRE tunnel that cannot reach the remote end, and the data loss can be avoided.
Page 88: Maintaining Gre
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration 2.6 Maintaining GRE This section describes how to reset the statistics of a tunnel interface, monitor the running status of GRE. 2.6.1 Resetting the Statistics of a Tunnel Interface...
Page 89: Debugging Gre
For details of the debugging operation, refer to the chapter Information Center Configuration in Quidway S7700 Smart Routing Switch Configuration Guide-System Management. For details of debugging commands, refer to Quidway S7700 Smart Routing Switch Debugging Reference. Procedure Run the debugging tunnel keepalive command in the user view to debug the Keepalive function of the GRE tunnel.
Page 90 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Figure 2-6 Networking diagram for configuring static routes SwitchB GE1/0/0 GE2/0/0 GE1/0/0 GE1/0/0 SwitchA SwitchC GE2/0/0 Tunnel1/0/1 Tunnel1/0/1 GE2/0/0 40.1.1.1/24 40.1.1.2/24 10.2.1.1/24 10.1.1.1/24 Device Interface VLANIF interface IP address...
Page 91 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration IP address of VLANIF interfaces, as shown in Figure 2-6 Procrss id and area id of OSPF Source address and destination address of the GRE tunnel, and IP addresses of tunnel...
Page 92 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration 127.0.0.1/32 Direct 0 127.0.0.1 InLoopBack0 127.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 255.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 Step 3 Configure the tunnel interface. # Configure Switch A. [SwitchA] interface tunnel 1/0/1 [SwitchA-Tunnel1/0/1] tunnel-protocol gre [SwitchA-Tunnel1/0/1] ip address 40.1.1.1 255.255.255.0...
Page 93 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration 20.1.1.2/32 Direct 0 20.1.1.2 Vlanif10 20.1.1.255/32 Direct 0 127.0.0.1 InLoopBack0 30.1.1.0/24 OSPF 20.1.1.2 Vlanif10 40.1.1.0/24 Direct 0 40.1.1.1 Tunnel1/0/1 40.1.1.1/32 Direct 0 127.0.0.1 InLoopBack0 40.1.1.255/32 Direct 0 127.0.0.1 InLoopBack0 127.0.0.0/8...
Page 94: Example For Configuring The Dynamic Routing Protocol On The Gre Tunnel
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration port hybrid pvid vlan 20 port hybrid untagged vlan 20 ospf 1 area 0.0.0.0 network 20.1.1.0 0.0.0.255 network 30.1.1.0 0.0.0.255 return Configuration file of Switch C sysname Switch-C...
Page 95 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Figure 2-7 Networking diagram for configuring dynamic routing protocol SwitchB GE1/0/0 GE2/0/0 VLANIF 20 VLANIF 30 20.1.1.2/24 30.1.1.1/24 GE1/0/0 GE2/0/0 VLANIF 30 VLANIF 20 OSPF 1 30.1.1.2/24 20.1.1.1/24...
Page 96 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration IP addresses of the interfaces on the two ends of the GRE tunnel Procedure Step 1 Assign the IP address to each interface. <Quidway> system-view [Quidway] sysname SwitchA...
Page 97 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration [SwitchA-ospf-2-area-0.0.0.0] network 40.1.1.0 0.0.0.255 [SwitchA-ospf-2-area-0.0.0.0] network 10.1.1.0 0.0.0.255 [SwitchA-ospf-2-area-0.0.0.0] quit [SwitchA-ospf-2] quit # Configure Switch C. [SwitchC] ospf 2 [SwitchC-ospf-2] area 0 [SwitchC-ospf-2-area-0.0.0.0] network 40.1.1.0 0.0.0.255 [SwitchC-ospf-2-area-0.0.0.0] network 10.2.1.0 0.0.0.255 [SwitchC-ospf-2-area-0.0.0.0] quit...
Page 98 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface Tunnel1/0/1 ip address 40.1.1.1 255.255.255.0 tunnel-protocol gre source 20.1.1.1 destination 30.1.1.2 ospf 1 area 0.0.0.0 network 20.1.1.0 0.0.0.255...
Page 99: Example For Configuring The Ce To Access A Vpn Through A Gre Tunnel Of The Public Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration tunnel-protocol gre source 30.1.1.2 destination 20.1.1.1 ospf 1 area 0.0.0.0 network 30.1.1.0 0.0.0.255 ospf 2 area 0.0.0.0 network 40.1.1.0 0.0.0.255 network 10.2.1.0 0.0.0.255 return 2.7.3 Example for Configuring the CE to Access a VPN Through a...
Page 100 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration GigabitEthernet2/0/0 VLANIF 20 30.1.1.1/24 Tunnel2/0/0 2.2.2.1/24 Switch A GigabitEthernet1/0/0 VLANIF 20 30.1.1.2/24 GigabitEthernet2/0/0 VLANIF 30 50.1.1.1/24 Loopback1 1.1.1.9/32 GigabitEthernet1/0/0 VLANIF 30 50.1.1.2/24 GigabitEthernet2/0/0 VLANIF 40 110.1.1.1/24 Tunnel1/0/0 2.2.2.2/24 Loopback1 3.3.3.9/32...
Page 101 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Procedure Step 1 Configure the IP address for each VLANIF interface and the routing protocol for the MPLS backbone network. Configure OSPF10 on PE1 and PE2, and then configure MPLS and LDP. The detailed configurations are not mentioned here.
Page 102 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration [CE1-Vlanif10] quit [CE1] interface tunnel 2/0/0 [CE1-Tunnel2/0/0] isis enable 50 [CE1-Tunnel2/0/0] quit # Configure PE1. [PE1] isis 50 vpn-instance vpn1 [PE1-isis-50] network-entity 50.0000.0000.0002.00 [PE1-isis-50] quit [PE1] interface tunnel 1/0/0...
Page 103 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration [PE2-bgp] ipv4-family vpn-instance vpn1 [PE2-bgp-vpn1] import-route direct [PE2-bgp-vpn1] import-route isis 50 Step 9 Import BGP routes into IS-IS. # Configure PE1. [PE1] isis 50 [PE1-isis-50] import-route bgp # Configure PE2.
Page 104 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface Tunnel2/0/0 ip address 2.2.2.1 255.255.255.0 tunnel-protocol gre source 30.1.1.1...
Page 105 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration ip binding vpn-instance vpn1 ip address 50.1.1.2 255.255.255.0 interface Vlanif40 ip address 110.1.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30...
Page 106 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration isis 50 vpn-instance vpn1 network-entity 50.0000.0000.0003.00 import-route bgp interface Vlanif40 ip address 110.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif50 ip binding vpn-instance vpn1 ip address 11.1.1.2 255.255.255.0 isis enable 50...
Page 107: Example For Configuring The Keepalive Function For Gre
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 60 port hybrid untagged vlan 60 return 2.7.4 Example for Configuring the Keepalive Function for GRE Networking Requirements As shown in Figure 2-9, Switch A and Switch B are configured with the GRE protocol.
Page 108 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration Procedure Step 1 Configure Switch A and Switch B to implement the interworking between the two devices. The detailed procedures are not mentioned here. Step 2 Configure a tunnel on Switch A and enable the Keepalive function.
Page 109 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 2 GRE Configuration vlan batch 10 interface Vlanif10 ip address 20.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface Tunnel1/0/0 ip address 40.1.1.1 255.255.255.0 source 20.1.1.1 destination 30.1.1.2...
Page 110: Bgp Mpls Ip Vpn Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration BGP MPLS IP VPN Configuration About This Chapter This chapter describes the BGP/MPLS IP VPN configuration, including the introduction to the BGP/MPLS IP VPN, common networking of the BGP/MPLS IP VPN, and configurations to ensure the reliability of the BGP/MPLS IP VPN.
Page 111 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration This section describes how to configure the routes that traverse the MPLS VPN backbone network to be the routes of the OSPF area. After the configuration, traffic between sites of the same VPN in the same OSPF area need not be forwarded through routes of the OSPF area.
Page 112: Introduction To Bgp/Mpls Ip Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.1 Introduction to BGP/MPLS IP VPN This section describes the concepts and roles of the PE, P, and CE. BGP/MPLS IP VPN is a PE-based L3VPN technology used in the Provider Provisioned VPN (PPVPN) solution.
Page 113: Typical Networking
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Basic Networking The S7700 uses the Multi-protocol Extensions for Border Gateway Protocol (MP-BGP) to achieve the VPN route exchange between PEs. The static route, Routing Information Protocol...
Page 114: Configuring A Vpn Instance
VPN instances. For details on how to bind sub-interfaces to VPN instances, see Configuring a Sub-interface to Access an L3VPN in the Quidway S7700 Smart Routing Switch Configuration Guide - Ethernet. 3.3 Configuring a VPN Instance A VPN instance isolates VPN routes from public network routes.
Page 115: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.3.1 Establishing the Configuration Task Before configuring a VPN instance, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the data required for the configuration. This will help you complete the configuration task quickly and accurately.
Page 116: Configuring Attributes For The Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Context Do as follows on the PE that is connected to the CE: Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: ip vpn-instance vpn-instance-name A VPN instance is created, and the VPN instance view is displayed.
Page 117 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration NOTE It is recommended to perform either Step 4 or Step 5. Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: ip vpn-instance vpn-instance-name The VPN instance view is displayed.
Page 118: Optional) Applying A Tunnel Policy To The Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The inbound routing policy of the VPN instance is configured. Step 8 (Optional) Run: export route-policy policy-name The outbound routing policy of the VPN instance is configured.
Page 119: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The system view is displayed. Step 2 Run: ip vpn-instance vpn-instance-name The VPN instance view is displayed. Step 3 Run: apply-label per-instance The MPLS label is allocated based on the VPN instance, which ensures that all the routes in a VPN instance use the same MPLS label.
Page 120: Configuring Basic Bgp/Mpls Ip Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Label Policy : label per route Import Route Policy : p1 The VPN QoS configuration information : based on VPN CIR: 100 PIR: 100 Export Route Policy : p2...
Page 121: Configuring A Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuring tunnels between PEs based on the tunnel policy Configuring the IP address for the CE interface that is connected to the PE Data Preparation To configure basic BGP/MPLS IP VPN, you need the following data.
Page 122: Configuring Mp-Ibgp Between Pes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The system view is displayed. Step 2 Run: interface interface-type interface-number The view of the interface that is to be bound with the VPN instance is displayed.
Page 123: Configuring A Routing Protocol Between A Pe And A Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration NOTE The 32-bit mask IP addresses of the loopback interfaces must be used to establish the MP-IBGP peer relationship between PEs. This can ensure the tunnel can be iterated. The route destined to the loopback interface is advertised to the remote PE based on IGP on the MPLS backbone network.
Page 124 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration During network transfer or service identification, a device needs to be simulated as multiple BGP devices logically. In this case, you can run the as-number command to configure an AS number for each VPN instance.
Page 125 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration This Step is used for the networking scenario where physically-dispersed CEs use the same AS number. The configuration is performed on the PE. CAUTION In the case of multi-homed CE, the BGP AS substitution function may lead to route loops.
Page 126 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration system-view The system view is displayed. Run: bgp as-number The BGP view is displayed. Run: ipv4-family vpn-instance vpn-instance-name The BGP-VPN instance view is displayed. (Optional) Run: as-number as-number An AS number for the VPN instance is specified.
Page 127 Do as follows on the PE. The CE is configured with the static route, and the configurations are common, therefore not mentioned here. NOTE For details, see Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Run: system-view The system view is displayed.
Page 128 Do as follows on the PE. The CE is configured with OSPF. The configurations are common, therefore not mentioned here. NOTE For details, see Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Run: system-view The system view is displayed.
Page 129 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration An OSPF process belongs to only one VPN instance. If you run an OSPF process without binding it to a VPN instance, this process is considered as a public network process.
Page 130 Do as follows on the PE. The CE is configured with IS-IS. The configurations are common, therefore not mentioned here. NOTE For details, see Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Run: system-view The system view is displayed.
Page 131 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration process. An IS-IS process that belongs to a public network cannot be bound with a VPN instance. Run: network-entity net The Network Entity Title (NET) is configured.
Page 132: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.4.6 Checking the Configuration After configuring the basic BGP/MPLS IP VPN function, you can view IPv4 VPN information about the local and remote sites on the PE or the CE.
Page 133: Creating A Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data Preparation Before configuring Hub and Spoke, you need the following data. Data To configure a VPN instance, you need the following data: l Name of the VPN instance...
Page 134 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Step 3 (Optional) Run: description description-information The description about the VPN instance is configured. The description can be used to record the relationship between a VPN instance and a certain VPN.
Page 135: Configuring Route Attributes Of The Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.5.3 Configuring Route Attributes of the VPN Instance This part describes how to configure the VPN target to control route advertisement and acceptance. Procedure Configuring Hub-PE...
Page 136: Binding An Interface With The Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuring Spoke-PE Run: system-view The system view is displayed. Run: ip vpn-instance vpn-instance-name1 The VPN instance view of the VPN-in is displayed. Run: vpn-target vpn-target2 &<1-8> import-extcommunity The VPN target extended community for the VPN instance is created to import the IPv4 routes advertised by all the Hub-PEs.
Page 137: Configuring Mp-Ibgp Between Hub-Pe And Spoke-Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The system view is displayed. Step 2 Run: interface interface-type interface-number The view of the interface that is to be bound with the VPN instance is displayed.
Page 138: Configuring Route Exchange Between Pe And Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration NOTE The 32-bit mask IP addresses of the loopback interfaces must be used to establish the MP-IBGP peer relationship between PEs. This can ensure the tunnel can be iterated. The route destined to the loopback interface is advertised to the remote PE based on IGP on the MPLS backbone network.
Page 139: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration In this way, instead of BGP, IGP or static routes are adopted between the Spoke-PE and the Spoke-CE. For details, refer to the chapter "BGP/MPLS IP VPN" in the Quidway S7700 Smart Routing Switch Feature Desripiton- VPN.
Page 140: Configuring Inter-As Vpn Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Run the display ip routing-table command to check routing information on the Hub-CE and all the Spoke-CEs. ----End Example Run the preceding commands. If the routing table of the VPN-in has routes to all the Spoke stations, and the routing table of the VPN-out has routes to the Hub and all the Spoke stations, it means the configuration succeeds.
Page 141: Configuring Inter-As Vpn Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data To configure the VPN instance on the PE and the ASBR, you need the following data: l Name of the VPN instance l (Optional) Description of the VPN instance...
Page 142: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.6.3 Checking the Configuration After configuring inter-AS VPN OptionA, you can view information about all BGP peer relationships and IPv4 VPN routes on PEs or ASBRs.
Page 143: Configuring Mp-Ibgp Between Pes And Asbrs In The Same As
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuring IGP for MPLS backbone networks in each AS to realize IP connectivity of the backbones in one AS Configuring basic MPLS capability and MPLS LDP for the MPLS backbone network...
Page 144: Configuring Mp-Ebgp Between Asbrs In Different Ass
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The BGP view is displayed. Step 3 Run: peer ipv4-address as-number as-number The peer ASBR is specified as the IBGP peer. Step 4 Run: peer ipv4-address connect-interface loopback interface-number The loopback interface is specified as the outgoing interface of the BGP session.
Page 145: Controlling The Receiving And Sending Of Vpn Routes By Using Routing Policies
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Step 5 Run: quit Return to the system view. Step 6 Run: bgp as-number The BGP view is displayed. Step 7 Run: peer ipv4-address as-number as-number The peer ASBR is specified as the EBGP peer.
Page 146 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Do as follows on the ASBR. Run: system-view The system view is displayed. Run: bgp as-number The BGP view is displayed. Run: ipv4-family vpnv4 [ unicast ] The BGP-VPNv4 address family is displayed.
Page 147: Optional) Storing Information About The Vpn Instance On The Asbr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The BGP view is displayed. Run: ipv4-family vpnv4 [ unicast ] The BGP-VPNv4 address family is displayed. Run: peer ipv4-address route-policy route-policy-name { export | import } The routing policy is applied to controlling the VPN IPv4 routing information.
Page 148: Optional) Enabling Next-Hop-Based Label Allocation On The Asbr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The MPLS label is allocated based on the VPN instance, which ensures that all the routes in a VPN instance use the same MPLS label.
Page 149: Configuring The Routing Protocol Between Ce And Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Step 3 Run: ipv4-family vpnv4 The BGP VPNv4 view is displayed. Step 4 Run: apply-label per-nexthop The next-hop-based label allocation for IPv4 VPN routes is enabled on the ASBR.
Page 150: Configuring Hovpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Run the display bgp vpnv4 all peer command on the PE or the ASBR. If the status of the IBGP peer between PE and ASBR in the same AS is "Established", and the status of the EBGP peer between ASBRs in the different AS is "Established", it means that the configuration succeeds.
Page 151: Advertising Default Routes Of A Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: bgp as-number The BGP view is displayed. Step 3 Run: peer { ipv4-address | group-name } as-number as-number The UPE is specified as the BGP peer of the SPE.
Page 152: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Step 4 Run: peer { ipv4-address | group-name } default-originate vpn-instance vpn-instance-name The default routes of a specified VPN instance are advertised to the UPE.
Page 153: Configuring The Loopback Address Of The Sham Link
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Pre-configuration Tasks Before configuring the OSPF sham link, you need to complete the following tasks: 3.4 Configuring Basic BGP/MPLS IP VPN (OSPF between the PE and the CE)
Page 154: Advertising Routes Of End Address Of The Sham Link
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The loopback interface is bound to the VPN instance. Step 4 Run: ip address ip-address { mask | mask-length } The address of the loopback interface is configured.
Page 155: Creating A Sham Link
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.9.4 Creating a Sham Link Creating a sham link is to establish a virtual link that connects the two end addresses of the sham link.
Page 156: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.9.5 Checking the Configuration After configuring an OSPF sham link, you can view information about the routing table on the CE, the nodes through which packets are sent, and established and non-established sham links.
Page 157: Configuring The Ospf Multi-Instance On The Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration One OSPF process can belong to only one VPN instance but one VPN instance can run several OSPF processes. The Multi-VPN-Instance CE can be considered as a networking solution that isolates services by isolating routes.
Page 158: Configuring The Ospf Multi-Instance On The Multi-Instance Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Different services have different OSPF process IDs. However, router IDs of different services do not necessarily differ. Step 3 Run: area area-id The OSPF area view is displayed.
Page 159: Canceling The Loop Detection On The Multi-Instance Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration system-view The system view is displayed. Step 2 Run: ospf process-id [ router-id router-id ] vpn-instance vpn-instance-name The OSPF multi-instance is configured. The OSPF process ID corresponds to that of the PE.
Page 160: Connecting Vpn And The Internet
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Prerequisite The configurations of the Multi-VPN-Instance CE function are complete. Procedure Run the display ip routing-table vpn-instance vpn-instance-name [ verbose ] command to check the VPN routing table on the multi-instance CE.
Page 161: Configuring The Static Route On The Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.11.2 Configuring the Static Route on the CE This part describes how to configure static routes on CEs to forward packets from the VPN to the Internet.
Page 162: Configuring The Static Route To Vpn On The Device Of The Public Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The static route from the VPN to Internet is configured and the next-hop address is a public network address. ----End 3.11.4 Configuring the Static Route to VPN on the Device of the...
Page 163: Configuring Vpn Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Example Run the display ip routing-table vpn-instance command on the PE, and you can find that the route to the CE and the route to the destination switch in the public network exist in the VPN routing table.
Page 164: Configuring Manual Vpn Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data Preparation To configure the VPN FRR, you need the following data. Data (Optional) Name of the routing policy Name of the VPN instance (Optional) Backup next hop 3.12.2 Configuring Manual VPN FRR...
Page 165: Configuring Vpn Auto Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.12.3 Configuring VPN Auto FRR If the primary link between PEs fails, VPN traffic is forwarded through the next hop (a PE) that is automatically selected by the system.
Page 166: Configuring Vpn Gr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ------------------------------------------------------------------------------ Routing Table : zy Summary Count : 1 Destination: 18.0.0.0/24 Protocol: BGP Process ID: 0 Preference: 255 Cost: 0 NextHop: 171.0.0.16 Neighbour: 171.0.0.16 State: Active Adv Relied...
Page 167: Configuring Igp Gr On The Backbone Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data (Optional) Interval for re-establishing the GR session (by default, it is 300 seconds) if the IS-IS GR is enabled (Optional) Interval for the GR time if the OSPF GR is enabled...
Page 168: Configuring Mpls Gr On The Backbone Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration By default, the interval for reestablishing the IS-IS GR session is 300 seconds. (Optional) Run: graceful-restart suppress-sa The GR Restarter is configured to suppress the advertisement of the adjacency relationship when it is restarting.
Page 169 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration backbone network, you can configure MPLS LDP GR; if RSVP-TE tunnels are configured on the backbone network, you can configure MPLS RSVP GR; if other types of tunnels are configured on the backbone network, you do not need to perform the operation.
Page 170 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configure RSVP GR. Run: system-view The system view is displayed. Run: mpls The MPLS view is displayed. Run: mpls te MPLS TE is enabled. Run: mpls rsvp-te RSVP TE is enabled.
Page 171: Configuring Gr Of The Routing Protocol Between Pes And Ces
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 13. Run: mpls rsvp-te hello The RSVP Hello extension function is enabled on the interface. Although the RSVP Hello extension function is enabled globally, it is disabled on the RSVP-enabled interfaces by default.
Page 172 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The suppress advertisement (SA) bit is used in the Hello PDUs by a restarting switch to request its neighbors to suppress advertising the adjacency to the restarting switch.
Page 173: Configuring Bgp Gr For Mp-Bgp
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The GR capability of BGP is enabled. (Optional) Run: graceful-restart timer restart time The maximum time for restarting the GR Restarter is configured. The restart period is the maximum waiting period, from the time when the receiving speaker detects that the GR Restarter restarts, to the time when the BGP session is reestablished.
Page 174 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Run the display bgp vpnv4 all peer verbose command to check the status of the BGP GR. ----End Example Run the display isis graceful-restart status command on the PE, and you can view the status of the ISIS GR.
Page 175: Configuring Route Reflection To Optimize The Vpn Backbone Layer
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Minimum route advertisement interval is 0 seconds Optional capabilities: Route refresh capability has been enabled 4-byte-as capability has been enabled Connect-interface has been configured Peer Preferred Value: 0...
Page 176: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.14.1 Establishing the Configuration Task Before configuring an RR to optimize the VPN backbone layer, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task quickly and accurately.
Page 177: Configuring The Rr To Establish Mp Ibgp Connections With The Client Pes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: bgp as-number The BGP view is displayed. Step 3 Run: peer ipv4-address as-number as-number The RR is specified as the BGP peer.
Page 178 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The BGP view is displayed. Run: group group-name [ internal ] An IBGP peer group is created. Run: peer group-name connect-interface interface-type interface-number The interface is specified as an interface to establish the TCP connection. The IP address of the interface must be the same as the MPLS LSR ID.
Page 179: Configuring Route Reflection For Bgp Ipv4 Vpn Routes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.14.4 Configuring Route Reflection for BGP IPv4 VPN routes The premise of enabling BGP VPNv4 route reflection is that the RR has established the MP- IBGP connections with all its clients (PEs).
Page 180: Configuring Route Reflection To Optimize The Vpn Access Layer
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Procedure Run the display bgp vpnv4 all peer [ [ ipv4-address ] verbose ] command to check information about the BGP VPNv4 peer on the RR or the Client PEs.
Page 181: Configuring All Client Ces To Establish Ibgp Connections With The Rr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configure a routing protocol for the MPLS backbone network to implement IP interworking between the switchs in the backbone network. Data Preparation Before configuring route reflection to optimize the VPN access layer, you need the following data.
Page 182: Configuring The Rr To Establish Mp Ibgp Connections With All Client Ces
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.15.3 Configuring the RR to Establish MP IBGP Connections with All Client CEs This part describes how to configure MP-IBGP connections between the RR and all its clients (CEs) to reflect VPNv4 routes to all clients (CEs).
Page 183: Configuring Route Reflection For The Routes Of The Bgp Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The peer of the BGP IPv4 VPN instance is configured. Run: peer ipv4-address connect-interface interface-type interface-number The interface is specified as an interface to establish the TCP connection.
Page 184: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The cluster ID of the RR is set. If a cluster has multiple RRs, you can use this command to set the same cluster ID for these RRs to prevent routing loops.
Page 185: Maintaining Bgp/Mpls Ip Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration table peer ipv4-address { advertised-routes | received-routes } command or display bgp vpnv4 all routing-table statistics command command on the Client CE. If the peer group is configured, you can view information about the group members and find that the status of the BGP connections between the RR and the group members is "Established"...
Page 186: Checking The Network Connectivity And Reachability
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Run the display bgp vpnv4 { all | route-distinguisher route-distinguisher | vpn- instance vpn-instance-name } routing-table [ match-options ] command to check information about the BGP VPNv4 routing table.
Page 187: Resetting Bgp Statistics Of A Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.16.4 Resetting BGP Statistics of a VPN Instance BGP statistics of the VPN instance cannot be restored after being cleared. Exercise caution when performing the action.
Page 188: Debugging Bgp/Mpls Ip Vpn
For more information, see the chapter "Information Center Configuration" in the S7700 Smart Routing Switch Configuration Guide - System Management. For the description about the debugging commands, see the Quidway S7700 Smart Routing Switch Debugging Reference. Procedure Run the debugging bgp vpn-instance vpn-instance-name peer-address { all | event | graceful-restart | timer } command in the user view to enable the debugging of the specified BGP peers in a VPN instance.
Page 189: Example For Configuring The Bgp/Mpls Ip Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.17.1 Example for Configuring the BGP/MPLS IP VPN Networking Requirements As shown in Figure 3-3, CE1 and CE3 belong to vpna and CE2 and CE4 belong to vpnb. The VPN target of vpna is 111:1, and VPN target of vpnb is 222:2.
Page 190 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration GigabitEthernet1/0/0 VLANIF 40 10.3.1.1/24 GigabitEthernet1/0/0 VLANIF 50 10.4.1.1/24 Configuration Roadmap The configuration roadmap is as follows: Configure VPN instances on the PEs connected to CEs on the backbone network and bind related VPNs to the interfaces connected to the CEs.
Page 191 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1-ospf-1-area-0.0.0.0] quit [PE1-ospf-1] quit # Configure the P. <Quidway> system-view [Quidway] sysname P [P] interface loopback 1 [P-LoopBack1] ip address 2.2.2.9 32 [P-LoopBack1] quit [P] vlan batch 30 60...
Page 192 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1] display ip routing-table Route Flags: R - relay, D - download to fib ------------------------------------------------------------------------------ Routing Tables: Public Destinations : 12 Routes : 12 Destination/Mask...
Page 193 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] mpls ldp [PE2-mpls-ldp] quit [PE2] interface vlanif 60 [PE2-Vlanif60] mpls [PE2-Vlanif60] mpls ldp [PE2-Vlanif60] quit After the configuration, LDP sessions are established between PE1 and P, and between P and PE2.
Page 194 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # Configure PE2. [PE2] ip vpn-instance vpna [PE2-vpn-instance-vpna] route-distinguisher 200:1 [PE2-vpn-instance-vpna] vpn-target 111:1 both [PE2-vpn-instance-vpna] quit [PE2] ip vpn-instance vpnb [PE2-vpn-instance-vpnb] route-distinguisher 200:2 [PE2-vpn-instance-vpnb] vpn-target 222:2 both...
Page 195 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 3/6/16 ms Step 4 Set up EBGP peer relation between the PE and the CE and import VPN routes.
Page 196 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration After the configuration, run the display bgp peer or display bgp vpnv4 all peer command, and you can see that the BGP peer relation between the PEs is in Established state.
Page 197 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Reply from 10.3.1.1: bytes=56 Sequence=1 ttl=253 time=72 ms Reply from 10.3.1.1: bytes=56 Sequence=2 ttl=253 time=34 ms Reply from 10.3.1.1: bytes=56 Sequence=3 ttl=253 time=50 ms Reply from 10.3.1.1: bytes=56 Sequence=4 ttl=253 time=50 ms Reply from 10.3.1.1: bytes=56 Sequence=5 ttl=253 time=34 ms...
Page 198 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 bgp 100 peer 3.3.3.9 as-number 100 peer 3.3.3.9 connect-interface LoopBack1...
Page 199 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration return Configuration file of PE2 sysname PE2 vlan batch 40 50 60 ip vpn-instance vpna route-distinguisher 200:1 vpn-target 111:1 export-extcommunity vpn-target 111:1 import-extcommunity ip vpn-instance vpnb...
Page 200 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration peer 10.4.1.1 as-number 65440 import-route direct ospf 1 area 0.0.0.0 network 172.2.1.0 0.0.0.255 network 3.3.3.9 0.0.0.0 return Configuration file of CE1 sysname CE1 vlan batch 10 interface Vlanif10 ip address 10.1.1.1 255.255.255.0...
Page 201: Example For Configuring Overlapping Addresses In Two Bgp/Mpls Ip Vpns
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration peer 10.3.1.2 as-number 100 ipv4-family unicast undo synchronization import-route direct peer 10.3.1.2 enable return Configuration file of CE4 sysname CE4 vlan batch 50 interface Vlanif50 ip address 10.4.1.1 255.255.255.0...
Page 202 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-4 Networking diagram of BGP/MPLS IP VPN vpna vpna GE3/0/1 GE3/0/1 VLANIF 100 VLANIF 100 14.1.1.2/24 34.1.1.2/24 GE3/0/1 Loopback0 GE3/0/1 VLANIF 100 2.2.2.9/32 VLANIF 100...
Page 203 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configure MP-IBGP between the PEs to exchange VPN routing information. Configure static routes between the CEs and PEs. Data Preparation To complete the configuration, you need the following data:...
Page 204 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Destinations : 12 Routes : 12 Destination/Mask Proto Cost Flags NextHop Interface 1.1.1.9/32 Direct 0 127.0.0.1 InLoopBack0 2.2.2.9/32 OSPF 12.1.1.2 Vlanif10 3.3.3.9/32 OSPF 12.1.1.2 Vlanif10 12.1.1.0/24...
Page 205 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Codes: LAM(Label Advertisement Mode), SsnAge Unit(DDDD:HH:MM) A '*' before a session means the session is being deleted. ------------------------------------------------------------------------------ Peer-ID Status SsnRole SsnAge KA-Sent/Rcv ------------------------------------------------------------------------------ 2.2.2.9:0...
Page 206 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] interface vlanif 101 [PE2-Vlanif101] ip binding vpn-instance vpnb [PE2-Vlanif101] ip address 34.1.1.1 255.255.255.0 [PE2-Vlanif101] quit # Assign IP addresses to the interfaces on the CEs according to Figure 3-4.
Page 207 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1-bgp-af-vpnv4] peer 3.3.3.9 enable [PE1-bgp-af-vpnv4] quit [PE1-bgp] ipv4-family vpn-instance vpna [PE1-bgp-vpna] import-route direct [PE1-bgp-vpna] quit [PE1-bgp] ipv4-family vpn-instance vpnb [PE1-bgp-vpnb] import-route direct [PE1-bgp-vpnb] quit # Configure PE2.
Page 208 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 34.1.1.0/24 RD 3.3.3.9 Vlanif10 255.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 Run the ping 34.1.1.1 command on CE1, and the ping is successful. Run the display interface command to view the statistics about packets on GE 3/0/1 and GE3/0/2 of PE2, and you can see that there are packets passing through GE 3/0/1 but there is not any packet passing through GE3/0/2.
Page 209 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration peer 3.3.3.9 enable ipv4-family vpnv4 peer 3.3.3.9 enable ipv4-family vpn-instance vpna import-route direct ospf 1 area 0.0.0.0 network 172.1.1.0 0.0.0.255 network 1.1.1.9 0.0.0.0 return Configuration file of P...
Page 210 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls lsr-id 3.3.3.9 mpls mpls ldp interface Vlanif20 ip address 23.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif100 ip binding vpn-instance vpna ip address 34.1.1.1 255.255.255.0...
Page 211: Example For Configuring Mutual Access Between Vpns On S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ip route-static 0.0.0.0 0.0.0.0 Vlanif 100 14.1.1.1 return Configuration file of CE2 sysname CE2 vlan batch 100 interface Vlanif100 ip address 34.1.1.2 255.255.255.0 interface GigabitEthernet3/0/1...
Page 212 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration NOTE This example is only for configuring mutual access for local VPNs on S7700, for details about configuring mutual access for local VPNs on SPU board, see 3.17.4 Example for Configuring Mutual Access for...
Page 213 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1-GigabitEthernet2/0/0] port link-type trunk [PE1-GigabitEthernet2/0/0] port trunk allow-pass vlan 20 [PE1-GigabitEthernet2/0/0] quit # Configure CE1. <Quidway> system-view [Quidway] sysname CE1 [CE1] vlan batch 10 [CE1] interface gigabitethernet 1/0/0...
Page 214 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Take the display on PE1 and CE1 as an example: [PE1] ping -vpn-instance vpna 10.1.1.1 PING 10.1.1.1: 56 data bytes, press CTRL_C to break Reply from 10.1.1.1: bytes=56 Sequence=1 ttl=255 time=5 ms Reply from 10.1.1.1: bytes=56 Sequence=2 ttl=255 time=3 ms...
Page 215 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuration Files Configuration file of PE1 sysname PE1 vlan batch 10 20 ip vpn-instance vpna route-distinguisher 100:1 vpn-target 111:1 export-extcommunity vpn-target 111:1 222:2 import-extcommunity ip vpn-instance vpnb...
Page 216: Example For Configuring Mutual Access For Local Vpns On Spu Board
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif20 ip address 10.2.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 ip route-static 10.1.1.0 24 10.2.1.2 return 3.17.4 Example for Configuring Mutual Access for Local VPNs on...
Page 217 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Procedure Step 1 Import flows from the switch to the SPU. # Configure the switch. [Switch] sysname Switch [Switch] vlan 10 [Switch-vlan10] quit [Switch] interface gigabitethernet 1/0/4...
Page 218 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [SPU] ip route-static vpn-instance vpn-a 20.20.20.1 32 Eth-Trunk 0.20 20.20.20.1 [SPU] ip route-static vpn-instance vpn-b 10.10.10.1 32 Eth-Trunk 0.10 10.10.10.1 Step 5 Verify the configuration.
Page 219: Example For Configuring Bgp Asn Substitution
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ip route-static vpn-instance vpn-b 10.10.10.1 32 Eth-Trunk 0.10 10.10.10.1 3.17.5 Example for Configuring BGP ASN Substitution Networking Requirements As shown in Figure 3-7, CE1 and CE2 belong to the same VPN instance and access PE1 and PE2 respectively.
Page 220 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuration Roadmap The configuration roadmap is as follows: Enable IGP on the backbone network to implement interworking between PEs, and between PE and P so that they can learn loopback address of each other.
Page 221 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Run the display ip routing-table vpn-instance command on PEs, and you can see the routes to the VPNs of the peer CEs. Take PE2 for example.
Page 222 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [CE2] display bgp routing-table peer 10.2.1.2 received-routes Total Number of Routes: 5 BGP Local router ID is 10.2.1.1 Status codes: * - valid, > - best, d - damped,...
Page 223 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration port hybrid pvid vlan 50 port hybrid untagged vlan 50 bgp 600 peer 10.1.1.2 as-number 100 ipv4-family unicast undo synchronization import-route direct peer 10.1.1.2 enable...
Page 224 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration return Configuration file of P sysname P vlan batch 20 30 mpls lsr-id 2.2.2.9 mpls mpls ldp interface Vlanif20 ip address ip address 20.1.1.2 255.255.255.0...
Page 225 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration port hybrid untagged vlan 40 interface GigabitEthernet2/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface LoopBack1 ip address 3.3.3.9 255.255.255.255 bgp 100 peer 1.1.1.9 as-number 100...
Page 226: Example For Configuring Hub&Spoke
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 3.17.6 Example for Configuring Hub&Spoke Networking Requirements As shown in Figure 3-8, the communication between Spoke-CEs is controlled by the Hub-CE in the central site. That is, the traffic between Spoke-CEs is forwarded by the Hub-CE, and not only by the Hub-PE.
Page 227 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Spoke-PE2 GigabitEthernet1/0/0 VLANIF 60 120.1.1.2/24 GigabitEthernet2/0/0 VLANIF 20 11.1.1.1/24 Loopback1 3.3.3.9/32 Hub-CE GigabitEthernet1/0/0 VLANIF 30 110.1.1.1/24 GigabitEthernet2/0/0 VLANIF 40 110.2.1.1/24 Spoke-CE1 GigabitEthernet1/0/0 VLANIF 50 100.1.1.1/24...
Page 228 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [Hub-PE-mpls] label advertise non-null [Hub-PE-mpls] quit [Hub-PE] mpls ldp [Hub-PE-mpls-ldp] quit [Hub-PE] interface vlanif 10 [Hub-PE-Vlanif10] mpls [Hub-PE-Vlanif10] mpls ldp [Hub-PE-Vlanif10] quit [Hub-PE] interface vlanif 20...
Page 229 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [Hub-PE] interface vlanif 40 [Hub-PE-Vlanif40] ip binding vpn-instance vpn_out [Hub-PE-Vlanif40] ip address 110.2.1.2 24 [Hub-PE-Vlanif40] quit # Configure the IP addresses of the interfaces on the CEs. The configuration procedure is not given here.
Page 230 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [Hub-PE-bgp-vpn_in] peer 110.1.1.1 as-number 65430 [Hub-PE-bgp-vpn_in] import-route direct [Hub-PE-bgp-vpn_in] quit [Hub-PE-bgp] ipv4-family vpn-instance vpn_out [Hub-PE-bgp-vpn_out] peer 110.2.1.1 as-number 65430 [Hub-PE-bgp-vpn_out] peer 110.2.1.1 allow-as-loop 1 [Hub-PE-bgp-vpn_out] import-route direct...
Page 231 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Reply from 120.1.1.1: bytes=56 Sequence=5 ttl=250 time=126 ms --- 120.1.1.1 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 80/111/132 ms [Spoke-CE1] tracert 120.1.1.1...
Page 232 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ip vpn-instance vpna route-distinguisher 100:1 vpn-target 100:1 export-extcommunity vpn-target 200:1 import-extcommunity mpls lsr-id 1.1.1.9 mpls label advertise non-null mpls ldp interface Vlanif10 ip address 10.1.1.1 255.255.255.0...
Page 233 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif20 ip address 11.1.1.1 255.255.255.0 mpls mpls ldp interface Vlanif60 ip binding vpn-instance vpna ip address 120.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 60...
Page 234 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration vlan batch 30 40 interface Vlanif30 ip address 110.1.1.1 255.255.255.0 interface Vlanif40 ip address 110.2.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30...
Page 235: Example For Configuring Inter-As Vpn Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface GigabitEthernet3/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface GigabitEthernet3/0/1...
Page 236 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-9 Networking diagram for configuring inter-AS VPN Option A BGP/MPLS Backbone BGP/MPLS Backbone AS 200 AS 100 Loopback1 Loopback1 2.2.2.9/32 3.3.3.9/32 GE2/0/0 GE2/0/0 VLAN IF12...
Page 237 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration NOTE The 32-bit loopback interface address used as the LSR ID must be advertised by OSPF. After the configuration, the OSPF neighbor relation can be established between the ASBR and the PE in the same AS.
Page 238 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] mpls ldp [PE2-mpls-ldp] quit [PE2] interface vlanif 22 [PE2-Vlanif22] mpls [PE2-Vlanif22] mpls ldp [PE2-Vlanif22] quit After the configuration, the LDP peer relation can be set up between the PE and ASBR in the same AS.
Page 239 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # On ASBR-PE1, set up an MP-IBGP peer relation between ASBR-PE1 and PE1. [ASBR-PE1] bgp 100 [ASBR-PE1-bgp] peer 1.1.1.9 as-number 100 [ASBR-PE1-bgp] peer 1.1.1.9 connect-interface loopback 1 [ASBR-PE1-bgp] ipv4-family vpnv4 [ASBR-PE1-bgp-af-vpnv4] peer 1.1.1.9 enable...
Page 240 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # On ASBR-PE1, set up an EBGP peer relation between ASBR-PE1 and ASBR-PE2. [ASBR-PE1] bgp 100 [ASBR-PE1-bgp] ipv4-family vpn-instance vpn1 [ASBR-PE1-bgp-vpn1] peer 192.1.1.2 as-number 200...
Page 241 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 192.1.1.1/32 Direct 0 127.0.0.1 InLoopBack0 192.1.1.255/32 Direct 0 127.0.0.1 InLoopBack0 255.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 Run the display bgp vpnv4 all routing-table command on an ASBR-PE, and you can see the VPNv4 routes on the ASBR-PE.
Page 242 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls lsr-id 1.1.1.9 mpls label advertise non-null mpls ldp interface Vlanif 10 ip binding vpn-instance vpn1 ip address 10.1.1.2 255.255.255.0 interface Vlanif11 ip address 172.1.1.2 255.255.255.0...
Page 243 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration port trunk allow-pass vlan 11 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 12 interface LoopBack1 ip address 2.2.2.9 255.255.255.255 bgp 100 peer 1.1.1.9 as-number 100 peer 1.1.1.9 connect-interface LoopBack1...
Page 244 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration bgp 200 peer 4.4.4.9 as-number 200 peer 4.4.4.9 connect-interface LoopBack1 ipv4-family unicast undo synchronization peer 4.4.4.9 enable ipv4-family vpnv4 policy vpn-target peer 4.4.4.9 enable ipv4-family vpn-instance vpn1 peer 192.1.1.1 as-number 100...
Page 245: Example For Configuring Inter-As Vpn Option B
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration peer 3.3.3.9 enable ipv4-family vpn-instance vpn1 peer 10.2.1.1 as-number 65002 import-route direct ospf 1 area 0.0.0.0 network 4.4.4.9 0.0.0.0 network 162.1.1.0 0.0.0.255 return Configuration file of CE2...
Page 246 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-10 Networking of the inter-AS VPN BGP/MPLS Backbone BGP/MPLS Backbone AS 200 Loopback1 Loopback1 AS 100 3.3.3.9/32 2.2.2.9/32 GE2/0/0 GE2/0/0 VLAN IF12 VLAN IF12...
Page 247 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration OSPF is used in this example. The configuration details are not mentioned here. NOTE Advertise the 32-bit IP address of the loopback interface, that is, the LSR ID, by using OSPF.
Page 248 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 10.2.1.0/24 10.1.1.2 Vlanif10 127.0.0.0/8 Direct 0 127.0.0.1 InLoopBack0 127.0.0.1/32 Direct 0 127.0.0.1 InLoopBack0 <CE1> ping 10.2.1.1 PING 10.2.1.1: 56 data bytes, press CTRL_C to break Reply from 10.2.1.1: bytes=56 Sequence=1 ttl=252 time=120 ms...
Page 249 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity mpls lsr-id 1.1.1.9 mpls mpls ldp interface Vlanif10 ip binding vpn-instance vpn1 ip address 10.1.1.2 255.255.255.0 interface Vlanif11 ip address 172.1.1.2 255.255.255.0...
Page 250 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 11 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 12 interface LoopBack1 ip address 2.2.2.9 255.255.255.255 bgp 100 peer 192.1.1.2 as-number 200...
Page 251 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ipv4-family unicast undo synchronization peer 192.1.1.1 enable peer 4.4.4.9 enable ipv4-family vpnv4 undo policy vpn-target peer 4.4.4.9 enable peer 192.1.1.1 enable ospf 1 area 0.0.0.0 network 3.3.3.9 0.0.0.0...
Page 252: Example For Configuring The Hovpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ospf 1 area 0.0.0.0 network 4.4.4.9 0.0.0.0 network 162.1.1.0 0.0.0.255 return Configuration file of CE2 sysname CE2 vlan 10 interface Vlanif10 ip address 10.2.1.1 255.255.255.0...
Page 253 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-11 Networking diagram for configuring the HoVPN Loopback1 Loopback1 2.2.2.9./32 3.3.3.9./32 GE2/0/0 Loopback1 GE1/0/0 GE2/0/0 1.1.1.9./32 GE1/0/0 GE2/0/0 GE1/0/0 AS: 100 GE1/0/0 GE1/0/0 VPN-A...
Page 254 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data Preparation To complete the configuration, you need the following data: IDs of the VLANs that the interfaces of PE and CE belong to, as shown in...
Page 255 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration <PE> system-view [PE] ip vpn-instance vpna [PE-vpn-instance-vpna] route-distinguisher 100:2 [PE-vpn-instance-vpna] vpn-target 1:1 [PE-vpn-instance-vpna] quit [PE] interface vlanif 40 [PE-Vlanif40] ip binding vpn-instance vpna [PE-Vlanif40] ip address 10.2.1.2 24...
Page 256 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE-bgp] peer 2.2.2.9 as-number 100 [PE-bgp] peer 2.2.2.9 connect-interface loopback 1 [PE-bgp] ipv4-family vpnv4 [PE-bgp-af-vpnv4] peer 2.2.2.9 enable [PE-bgp-af-vpnv4] quit [PE-bgp] quit Step 5 Configure the SPE.
Page 257 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Destination/Mask Proto Cost Flags NextHop Interface 10.1.1.0/24 10.2.1.2 Vlanif40 10.2.1.0/24 Direct 0 10.2.1.1 Vlanif40 10.2.1.1/32 Direct 0 127.0.0.1 InLoopBack0 10.2.1.255/32 Direct 0 127.0.0.1 InLoopBack0 127.0.0.0/8 Direct 0 127.0.0.1...
Page 258 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration vpn-target 1:1 import-extcommunity mpls lsr-id 1.1.1.9 mpls label advertise non-null mpls ldp interface Vlanif 10 ip address 172.1.1.1 255.255.255.0 mpls mpls ldp interface Vlanif 30 ip binding vpn-instance vpna ip address 10.1.1.2 255.255.255.0...
Page 259 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls mpls ldp interface Vlanif20 ip address 172.2.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0...
Page 260: Example For Configuring The Ospf Sham Link
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 40 port hybrid untagged vlan 40 interface GigabitEthernet2/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface LoopBack1 ip address 3.3.3.9 255.255.255.255...
Page 261 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-12 Networking diagram for configuring the OSPF sham link Loopback1 Loopback1 Loopback1 2.2.2.9/32 3.3.3.9/32 1.1.1.9/32 GE2/0/0 GE2/0/0 GE1/0/0 GE2/0/0 GE1/0/0 GE1/0/0 Loopback10 Loopback10 sham link 5.5.5.5/32...
Page 262 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Data Preparation To complete the configuration, you need the following data: MPLS LSR-IDs of PE and P Name of the VPN instance, RD, and VPN target on the PE...
Page 263 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [Switch-ospf-1] area 0 [Switch-ospf-1-area-0.0.0.0] network 20.1.1.0 0.0.0.255 [Switch-ospf-1-area-0.0.0.0] network 30.1.1.0 0.0.0.255 [Switch-ospf-1-area-0.0.0.0] quit [Switch-ospf-1] quit <Quidway> system-view [Quidway] sysname CE2 [CE2] vlan batch 30 60...
Page 264 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1-bgp-af-vpnv4] quit [PE1-bgp] quit # Configure the P. <Quidway> system-view [Quidway] sysname P [P] vlan batch 10 40 [P] interface gigabitethernet 1/0/0 [P-GigabitEthernet1/0/0] port hybrid pvid vlan 10...
Page 265 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] ospf [PE2-ospf-1] area 0 [PE2-ospf-1-area-0.0.0.0] network 3.3.3.9 0.0.0.0 [PE2-ospf-1-area-0.0.0.0] network 40.1.1.0 0.0.0.255 [PE2-ospf-1-area-0.0.0.0] quit [PE2-ospf-1] quit [PE2] bgp 100 [PE2-bgp] peer 1.1.1.9 as-number 100 [PE2-bgp] peer 1.1.1.9 connect-interface loopback 1...
Page 266 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration After the configuration, run the display ip routing-table vpn-instance command on the PEs, and you can see that the routes to the peer CEs are OSPF routes through the backbone network, not the BGP routes through the user network.
Page 267 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1] display ip routing-table vpn-instance vpn1 Route Flags: R - relay, D - download to fib ------------------------------------------------------------------------------ Routing Tables: vpn1 Destinations : 8 Routes : 8...
Page 268 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1] display ospf sham-link OSPF Process 1 with Router ID 1.1.1.9 Sham Link: Area NeighborId Source-IP Destination-IP State Cost OSPF Process 100 with Router ID 100.1.1.2...
Page 269 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif50 ip binding vpn-instance vpn1 ip address 100.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 50 port hybrid untagged vlan 50 interface GigabitEthernet2/0/0 port hybrid pvid vlan 10...
Page 270 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 40 port hybrid untagged vlan 40 interface LoopBack1 ip address 2.2.2.9 255.255.255.255...
Page 271 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ipv4-family vpn-instance vpn1 import-route direct import-route ospf 100 ospf 1 area 0.0.0.0 network 3.3.3.9 0.0.0.0 network 40.1.1.0 0.0.0.255 ospf 100 vpn-instance vpn1 import-route bgp domain-id 0.0.0.10 area 0.0.0.0...
Page 272: Example For Configuring The Multi-Vpn-Instance Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration network 30.1.1.0 0.0.0.255 network 120.1.1.0 0.0.0.255 return Configuration file of Switch sysname Switch vlan batch 20 30 interface Vlanif20 ip address 20.1.1.2 255.255.255.0 interface Vlanif30 ip address 30.1.1.1 255.255.255.0...
Page 273 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-13 Networking diagram for configuring multi-VPN-instance CE vpna vpna GE1/0/0 GE1/0/0 Loopback1 2.2.2.9./32 GE1/0/0 GE3/0/0 vpna GE2/0/0 GE1/0/0 GE3/0/0 Loopback1 1.1.1.9./32 GE1/0/0 vpnb GE3/0/0...
Page 274 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Set up an EBGP adjacency between PE and the connected CE to import the VPN routes to the VPN routing table of PE. Configure OSPF multi-instance between MCE and PE2 to exchange VPN routing information.
Page 275 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration After the configuration, run the display mpls ldp session command on the PEs, and you can see that the MPLS LDP session between PEs is in Operational state.
Page 276 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2-Vlanif50] ip binding vpn-instance vpna [PE2-Vlanif50] ip address 192.1.1.1 24 [PE2-Vlanif50] quit [PE2]interface vlanif 40 [PE2-Vlnaif40] ip binding vpn-instance vpnb [PE2-Vlnaif40] ip address 192.2.1.1 24 [PE2-Vlnaif40] quit Step 4 Configure VPN instances on the MCE.
Page 277 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Peer MsgRcvd MsgSent OutQ Up/Down State PrefRcv 2.2.2.9 0 01:19:16 Established Peer of vpn instance : vpn instance vpna : 10.1.1.1 4 65410 0 00:04:14 Established vpn instance vpnb : 10.2.1.1...
Page 278 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [CE3-GigabitEthernet1/0/0] port hybrid untagged vlan 60 [CE3-GigabitEthernet1/0/0] quit [CE3]interface vlanif 60 [CE3-Vlanif60]ip address 10.3.1.1 24 [CE3-Vlanif60] quit [CE3] rip 100 [CE3-rip-100] version 2 [CE3-rip-100] network 10.0.0.0 [CE3-rip-100] import-route direct # Configure CE4.
Page 279 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Destinations : 5 Routes : 5 Destination/Mask Proto Cost Flags NextHop Interface 10.1.1.0/24 Direct 0 10.1.1.2 vlanif10 10.1.1.2/32 Direct 0 127.0.0.1 InLoopBack0 10.1.1.255/32 Direct 0 127.0.0.1...
Page 280 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration peer 10.1.1.2 enable return Configuration file of CE2 sysname CE2 vlan batch 20 interface Vlanif20 ip address 10.2.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 20...
Page 281 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface GigabitEthernet3/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 bgp 100 peer 2.2.2.9 as-number 100 peer 2.2.2.9 connect-interface LoopBack1...
Page 282 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface LoopBack1 ip address 2.2.2.9 255.255.255.255 interface GigabitEthernet1/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface GigabitEthernet2/0/0 port hybrid pvid vlan 50...
Page 283 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif50 ip binding vpn-instance vpna ip address 192.1.1.2 255.255.255.0 interface Vlanif60 ip binding vpn-instance vpna ip address 10.3.1.2 255.255.255.0 interface Vlanif70 ip binding vpn-instance vpnb ip address 10.4.1.2 255.255.255.0...
Page 284: Example For Connecting A Vpn To The Internet
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration return Configuration file of CE4 sysname CE4 vlan batch 70 interface Vlanif70 ip address 10.4.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 70 port hybrid untagged vlan 70...
Page 285 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration GigabitEthernet2/0/0 VLANIF 40 10.2.1.2/24 GigabitEthernet1/0/0 VLANIF 10 100.1.1.2/24 GigabitEthernet2/0/0 VLANIF 20 100.2.1.1/24 GigabitEthernet1/0/0 VLANIF 30 10.1.1.1/24 GigabitEthernet2/0/0 VLANIF 50 100.3.1.2/24 GigabitEthernet1/0/0 VLANIF 40 10.2.1.1/24 Configuration Roadmap In this example, you need to configure an L3VPN, and then configure three static routes.
Page 286 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration <P> display mpls ldp session LDP Session(s) in Public Network Codes: LAM(Label Advertisement Mode), SsnAge Unit(DDDD:HH:MM) A '*' before a session means the session is being deleted.
Page 287 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # Configure a default route from the agent server of the VPN to the Internet. The next hop is P. Specify the address of the next hop as a public network address. That is, add the keyword public to the right of the next hop address in the command.
Page 288 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [P] ping 100.3.1.1 PING 100.3.1.1: 56 data bytes, press CTRL_C to break Reply from 100.3.1.1: bytes=56 Sequence=1 ttl=254 time=62 ms Reply from 100.3.1.1: bytes=56 Sequence=2 ttl=254 time=62 ms Reply from 100.3.1.1: bytes=56 Sequence=3 ttl=254 time=62 ms...
Page 289 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif10 ip address 100.1.1.1 255.255.255.0 mpls mpls ldp interface Vlanif30 ip binding vpn-instance vpn1 ip address 10.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 30...
Page 290 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface LoopBack1 ip address 2.2.2.2 255.255.255.255 ospf 1 area 0.0.0.0...
Page 291: Example For Configuring Ce Dual-Homing
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration import-route direct ospf 1 area 0.0.0.0 network 3.3.3.3 0.0.0.0 network 100.2.1.0 0.0.0.255 return Configuration file of CE2 sysname CE2 vlan batch 40 interface Vlanif 40 ip address 10.2.1.1 255.255.255.0...
Page 292 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-15 Networking of CE dual-homing VPN backbone AS 100 Loopback1 Loopback1 Loopback1 GE2/0/0 GE2/0/0 GE1/0/0 GE2/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE2/0/0 GE2/0/0 GE3/0/0 GE3/0/0...
Page 293 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration GE1/0/0 VLANIF 103 10.3.1.2/30 GE2/0/0 VLANIF 104 10.4.1.2/30 GE3/0/0 VLANIF 1002 1.6.1.1/24 Configuration Roadmap The configuration roadmap is as follows: Configure BGP/MPLS IP VPN. In the BGP view of CE1, enable load balancing for the traffic transmitted from CE1 to CE2.
Page 294 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration The configurations of PE2, PE3, PE4, P1, and P2 are the same as the configuration of PE1, and are not mentioned here. After the configuration, run the display ip routing-table command, and you can view that PE1 and PE3 can learn the loopback1 route of each other and PE2 and PE4 can learn the loopback1 route of each other.
Page 295 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration 5.5.5.5:0 Operational DU Passive 0000:07:02 1688/1688 ------------------------------------------------------------------------------ TOTAL: 1 session(s) Found. <PE1> display mpls ldp lsp LDP LSP Information ------------------------------------------------------------------------------- DestAddress/Mask In/OutLabel UpstreamPeer NextHop OutInterface ------------------------------------------------------------------------------- 1.1.1.9/32...
Page 296 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE3] ip vpn-instance vpn1 [PE3-vpn-instance-vpn1] route-distinguisher 100:3 [PE3-vpn-instance-vpn1] vpn-target 1:1 both [PE3-vpn-instance-vpn1] quit # Bind the interfaces connected to CEs to the corresponding VPNs and assign IP addresses to these interfaces.
Page 297 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1] bgp 100 # In the BGP-VPN instance view, specify CEs as EBGP peers and import direct routes. [PE1-bgp] ipv4-family vpn-instance vpn1 [PE1-bgp-vpn1] peer 10.1.1.1 as-number 65410...
Page 298 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Peer MsgRcvd MsgSent OutQ Up/Down State PrefRcv 10.1.1.1 4 65410 0 06:16:09 Established <PE1> ping -vpn-instance vpn1 10.1.1.1 PING 10.1.1.1 : 56 data bytes, press CTRL_C to break Reply from 10.1.1.1...
Page 299 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # In the VPNv4 address family view, enable the capability of exchanging VPN-IPv4 routing information between PE2 and PE4. [PE2-bgp] ipv4-family vpnv4 [PE2-bgp-af-vpnv4] peer 4.4.4.4 enable [PE2-bgp-af-vpnv4] quit # Configure PE4.
Page 300 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ------------------------------------------------------------------------------ Routing Tables: Public Destinations : 15 Routes : 16 Destination/Mask Proto Cost Flags NextHop Interface 1.5.1.0/24 Direct 0 1.5.1.1 Vlanif1001 1.5.1.1/32 Direct 0 127.0.0.1 InLoopBack0 1.5.1.255/32...
Page 301 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration sysname PE1 vlan batch 10 101 ip vpn-instance vpn1 route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity mpls lsr-id 1.1.1.1 mpls mpls ldp isis 1 network-entity 10.0000.0000.0001.00...
Page 302 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls mpls ldp isis 1 network-entity 10.0000.0000.0002.00 interface Vlanif20 ip address 100.2.1.1 255.255.255.252 isis enable 1 mpls mpls ldp interface Vlanif102 ip binding vpn-instance vpn1 ip address 10.2.1.2 255.255.255.252...
Page 303 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 30 port hybrid untagged vlan 30 interface LoopBack1 ip address 5.5.5.5 255.255.255.255...
Page 304 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls ldp isis 1 network-entity 10.0000.0000.0003.0 interface Vlanif30 ip address 100.3.1.2 255.255.255.252 isis enable 1 mpls mpls ldp interface Vlanif 103 ip binding vpn-instance vpn1 ip address 10.3.1.1 255.255.255.252...
Page 305 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration isis enable 1 mpls mpls ldp interface Vlanif 104 ip binding vpn-instance vpn1 ip address 10.4.1.1. 255.255.255.252 interface GigabitEthernet1/0/0 port hybrid pvid vlan 40 port hybrid untagged vlan 40...
Page 306: Example For Configuring Vpn Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ipv4-family unicast undo synchronization import-route direct peer 10.3.1.1 enable peer 10.4.1.1. enable return 3.17.14 Example for Configuring VPN FRR Networking Requirements As shown in Figure 3-16, you need to configure the backup next hop on PE1 to configure PE3 as a backup of PE2.
Page 307 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuration Roadmap The configuration roadmap is as follows: Configure OSPF on the backbone routers (PE1, PE2, and PE3) to implement interworking of these backbone routers.
Page 308 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2-mpls-ldp] quit [PE2] interface vlanif 10 [PE2-Vlanif10] mpls [PE2-Vlanif10] mpls ldp [PE2-Vlanif10] quit # Configure PE3. <PE3> system-view [PE3] mpls lsr-id 3.3.3.3 [PE3] mpls [PE3-mpls] label advertise non-null...
Page 309 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE1] bgp 100 [PE1-bgp] ipv4-family vpn-instance vpn1 [PE1-bgp-vpn1] import-route direct [PE1-bgp-vpn1] quit # Configure PE2. [PE2] bgp 100 [PE2-bgp] ipv4-family vpn-instance vpn1 [PE2-bgp-vpn1] peer 10.1.1.1 as-number 65410...
Page 310 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # Configure PE3. [PE3] bgp 100 [PE3-bgp] peer 1.1.1.1 as-number 100 [PE3-bgp] peer 1.1.1.1 connect-interface loopback 1 [PE3-bgp] ipv4-family vpnv4 [PE3-bgp-af-vpnv4] peer 1.1.1.1 enable [PE3-bgp-af-vpnv4] quit Run the display bgp vpnv4 all peer command on the PEs, and you can see that MP-IBGP adjacencies are established between PEs.
Page 311 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Configuration Files Configuration file of PE1 sysname PE1 vlan batch 10 30 ip vpn-instance vpn1 route-distinguisher 100:1 vpn frr route-policy vpn_frr_rp vpn-target 111:1 export-extcommunity vpn-target 111:1 import-extcommunity mpls lsr-id 1.1.1.1...
Page 312 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration if-match ip next-hop ip-prefix vpn_frr_list apply backup-nexthop 3.3.3.3 return Configuration file of PE2 sysname PE2 vlan batch 10 20 ip vpn-instance vpn1 route-distinguisher 100:2 vpn-target 111:1 export-extcommunity vpn-target 111:1 import-extcommunity mpls lsr-id 2.2.2.2...
Page 313 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration ip vpn-instance vpn1 route-distinguisher 100:3 vpn-target 111:1 export-extcommunity vpn-target 111:1 import-extcommunity mpls lsr-id 3.3.3.3 mpls label advertise non-null mpls ldp interface Vlanif 30 ip address 100.2.1.2 255.255.255.252...
Page 314: Example For Configuring Vpn Gr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface GigabitEthernet2/0/0 port hybrid pvid vlan 40 port hybrid untagged vlan 40 interface GigabitEthernet3/0/0...
Page 315 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration GigabitEthernet1/0/0 VLANIF 20 100.1.1.2/24 GigabitEthernet2/0/0 VLANIF 30 100.2.1.1/24 GigabitEthernet1/0/0 VLANIF 10 10.1.1.1/24 GigabitEthernet1/0/0 VLANIF 40 10.2.1.1/24 Configuration Roadmap The configuration roadmap is as follows: Configure BGP/MPLS IP VPN.
Page 316 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration # The configurations of the P device, PE2, CE2, and CE1 are the same as the configuration of PE1, and are not mentioned here. Step 2 Configure BGP/MPLS IP VPN of the backbone network.
Page 317 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] interface loopback 1 [PE2-LoopBack1] ip address 3.3.3.9 32 [PE2-LoopBack1] quit [PE2] mpls lsr-id 3.3.3.9 [PE2] mpls [PE2-mpls] lsp-trigger all [PE2-mpls] quit [PE2] mpls ldp...
Page 318 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration [PE2] ip vpn-instance vpn1 [PE2-vpn-instance-vpn1] route-distinguisher 100:2 [PE2-vpn-instance-vpn1] vpn-target 111:1 [PE2-vpn-instance-vpn1] quit [PE2] interface vlanif 40 [PE2-Vlanif40] ip binding vpn-instance vpn1 [PE2-Vlanif40] ip address 10.2.1.2 30...
Page 319 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Total Number of Interfaces = 2 Restart Status: RESTART COMPLETE IS-IS(1) Level-2 Restart Status Restart Interval: 300 SA Bit Supported Total Number of Interfaces = 2 Restart Status: RESTART COMPLETE Step 5 Configure MPLS LDP GR of the backbone network.
Page 320 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration OSPF Protocol Information RouterID: 10.2.1.2 Border Router: AREA ECA-route-type: 0x0306 Route Tag: 3489661028 PE Router, Multi-VPN-Instance is enabled Opaque Capable Graceful-restart capability: planned and un-planned, totally...
Page 321 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration IPv4 Unicast (was preserved) VPNv4 (was preserved) Address family IPv4 Unicast: advertised and received Address family VPNv4: advertised and received Received: Total 29 messages Update messages...
Page 322 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Route refresh capability has been enabled 4-byte-as capability has been enabled Peer Preferred Value: 0 Routing policy configured: No routing policy is configured Step 8 Verify the configuration.
Page 323 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface LoopBack1 ip address 1.1.1.9 255.255.255.255 isis enable 1 bgp 100 graceful-restart peer 3.3.3.9 as-number 100 peer 3.3.3.9 connect-interface LoopBack1 ipv4-family vpnv4 policy vpn-target peer 3.3.3.9 enable ipv4-family vpn-instance vpn1 peer 10.1.1.1 as-number 65410...
Page 324 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration vpn-target 111:1 export-extcommunity vpn-target 111:1 import-extcommunity mpls lsr-id 3.3.3.9 mpls mpls ldp graceful-restart isis 1 graceful-restart network-entity 10.0000.0000.0003.00 interface Vlanif 30 ip address 100.2.1.2 255.255.255.252...
Page 325: Example For Configuring Double Rrs To Optimize Vpn Backbone Layer
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration bgp 65410 graceful-restart peer 10.1.1.2 as-number 100 import-route direct return Configuration file of CE2 sysname CE2 vlan batch 40 interface Vlanif 40 ip address 10.2.1.1 255.255.255.252...
Page 326 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Figure 3-18 Networking diagram for configuring double reflectors to optimize VPN backbone layer Loopback1 Loopback1 2.2.2.9/32 3.3.3.9/32 GE2/0/0 GE1/0/0 AS100 GE1/0/0 GE2/0/0 GE3/0/0 GE3/0/0 GE1/0/0...
Page 327 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration As shown in Figure 3-18, PE1, PE2, P1, and P2 are on the backbone network AS100. CE1 and CE2 belong to VPNA. Select P1 and P2 as the RRs of the VPN.
Page 328 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Destination/Mask Proto Cost Flags NextHop Interface 1.1.1.9/32 Direct 0 127.0.0.1 InLoopBack0 2.2.2.9/32 OSPF 100.1.2.2 Vlanif10 3.3.3.9/32 OSPF 100.1.3.2 Vlanif40 4.4.4.9/32 OSPF 100.1.3.2 Vlanif10 OSPF 100.1.2.2 Vlanif40 100.1.2.0/24...
Page 329 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration For the configuration procedure, see Example for Configuring the BGP/MPLS IP VPN. The configuration details are not mentioned here. Set up EBGP peer relation between the PE and the CE and import VPN routes.
Page 330 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration Peer MsgRcvd MsgSent OutQ Up/Down State PrefRcv 2.2.2.9 00:00:31 Established 3.3.3.9 00:01:23 Established Peer of vpn instance : vpn instance vpna : 10.1.1.1 65410 79...
Page 331 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration interface Vlanif10 ip address 100.1.2.1 255.255.255.0 mpls mpls ldp interface Vlanif40 ip address 100.1.3.1 255.255.255.0 mpls mpls ldp interface Vlanif60 ip binding vpn-instance vpna ip address 10.1.1.2 255.255.255.0...
Page 332 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls mpls ldp interface Vlanif20 ip address 100.2.3.1 255.255.255.0 mpls mpls ldp interface Vlanif50 ip address 100.2.4.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10...
Page 333 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration mpls mpls ldp interface Vlanif20 ip address 100.2.3.2 255.255.255.0 mpls mpls ldp interface Vlanif30 ip address 100.3.4.1 255.255.255.0 mpls mpls ldp interface Vlanif40 ip address 100.1.3.2 255.255.255.0...
Page 334 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration sysname PE2 vlan batch 30 50 70 ip vpn-instance vpna route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity mpls lsr-id 4.4.4.9 mpls mpls ldp interface Vlanif30 ip address 100.3.4.2 255.255.255.0...
Page 335 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 3 BGP MPLS IP VPN Configuration return Configuration file of CE1 sysname CE1 vlan batch 60 interface Vlanif60 ip address 10.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port hybrid pvid vlan 60 port hybrid untagged vlan 60 bgp 65410 peer 10.1.1.2 as-number 100...
Page 336: Bgp Mpls Ipv6 Vpn Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration BGP MPLS IPv6 VPN Configuration About This Chapter This chapter describes the BGP/MPLS IPv6 VPN configuration, including the comparison between the IPv6 VPN and IPv4 VPN, common networking of the BGP/MPLS IPv6 VPN, and configurations to ensure the reliability of the BGP/MPLS IPv6 VPN.
Page 337 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.9 Configuring Route Reflection for BGP VPNv6 Routes Deploying a BGP VPNv6 Route Reflector (RR) reduces the number of MP-IBGP connections. This lightens the burden of PEs and facilitates network maintenance and management.
Page 338: Introduction To Bgp/Mpls Ipv6 Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.1 Introduction to BGP/MPLS IPv6 VPN This part describes the similarities and differences between BGP/MPLS IPv6 VPN and BGP/ MPLS IP VPN. As an enhancement of IPv4, IPv6 is an Internet protocol of the next generation. IPv6 provides the more address spaces and enhanced security functions, and supports more access users and devices in the Internet than IPv4.
Page 339: Bgp/Mpls Ipv6 Vpn Features Supported By The S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.2 BGP/MPLS IPv6 VPN Features Supported by the S7700 This part describes the basic networking, typical networking, and reliability of BGP/MPLS IP VPN supported by the S7700.
Page 340: Creating An Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration imported to the IPv6 VPN instance. The export routing policy is used to filter the routes exported to other PEs. Pre-configuration Tasks Before configuring an IPv6 VPN instance, complete the following tasks:...
Page 341: Configuring Attributes For The Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration No default IPv6 VPN instance exists on a PE, and multiple IPv6 VPN instances can be created on the PE. Step 3 Run: route-distinguisher route-distinguisher The RD for the IPv6 VPN instance is configured.
Page 342: Optional) Configuring Mpls Label Allocation Based On The Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 4 (Optional) Run: routing-table limit number { alert-percent | simply-alert } The maximum number of routes of the IPv6 VPN Instance is configured. You can define the maximum number of routes that can be supported by the IPv6 VPN Instance to avoid a PE importing too many IPv6 VPN routes.
Page 343: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: ipv6 vpn6-instance vpn6-instance-name The IPv6 VPN instance view is displayed. Step 3 (Optional) Run: apply-label per-instance The label is allocated based on the IPv6 VPN Instance.
Page 344: Configuring Basic Bgp/Mpls Ipv6 Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration policy for label allocation about the VPN instance is displayed, it means the configuration succeeds. For example: <Quidway> display ipv6 vpn6-instance verbose vpn1 VPN6-Instance Name and ID : vpn1, 1...
Page 345: Configuring An Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Pre-configuration Tasks Before configuring basic BGP/MPLS IPv6 VPN, complete the following tasks: Enabling IPv6 on PEs and on the interfaces that need to be configured with IPv6...
Page 346: Configuring Mp-Ibgp Between Pes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Context Do as follows on the PE devices connected with CE devices. Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: interface interface-type interface-number The view of the interface that is to be bound with the IPv6 VPN instance is displayed.
Page 347: Configuring Route Exchange Between Pe And Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The BGP view is displayed. Step 3 Run: peer ipv4-address as-number as-number The remote PE is specified as the peer. Step 4 Run: peer ipv4-address connect-interface loopback interface-number The interface is used to set up TCP connections.
Page 348 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The BGP view is displayed. Run: ipv6-family vpn6-instance vpn6-instance-name The BGP-VPN6 instance view is displayed. (Optional) Run: as-number as-number An AS number for the IPv6 VPN instance is specified.
Page 349 The type of the imported route varies with networking modes. Configuring Static Routes Between PE and CE Do as follows on the PE. NOTE For the detailed configuration about the IPv6 static route, refer to the Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Run: system-view The system view is displayed.
Page 350 The configurations on the CE are similar to the configuration of common RIPng and are not mentioned here. NOTE For the detailed configuration about RIPng, refer to the Quidway S7700 Smart Routing Switch Configuration Guide IP Routing Volume. Do as follows on the PE.
Page 351 Configuring OSPFv3 Between PE and CE Configure OSPFv3 on the CE. For the detailed configuration about OSPFv3, refer to the Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Configure an OSPFv3 multi-instance on the PE and configure BGP and OSPFv3 to import routes from each other.
Page 352 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration One OSPFv3 instance belongs to only one IPv6 VPN Instance. If an OSPFv3 process is not bound to an IPv6 VPN Instance , the OSPFv3 process is a public process. In addition, the public OSPFv3 instance cannot be bound to an IPv6 VPN Instance.
Page 353 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration NOTE For the detailed configuration about IS-ISv6, refer to the Quidway S7700 Smart Routing Switch Configuration Guide - IP Routing. Do as follows on the PE. Run: system-view The system view is displayed.
Page 354: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run: interface interface-type interface-number The interface view is displayed. Run: isis ipv6 enable [ process-id ] IS-IS IPv6 is enabled on the interface. 10. Run: quit Return to the system view.
Page 355: Configuring Hub And Spoke
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.5 Configuring Hub and Spoke In the networking of Hub and Spoke, an access control device is specified in the IPv6 VPN, and users communicate with each other through the access control device.
Page 356: Configuring An Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Data Data for the configurations of routing protocols (static route, RIPng, IS-ISv6, or BGP4+) between Hub-PE and Hub-CE, and between Spoke-PE and Spoke-CE 4.5.2 Configuring an IPv6 VPN Instance You can configure an IPv6 VPN Instances for managing IPv6 VPN routes.
Page 357: Configuring Route Related Attributes Of An Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration An IPv6 VPN Instance takes effect only after the RD is configured. Before configuring the RD, you may configure only the description for the IPv6 VPN Instance .
Page 358 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Procedure Configuring Hub-PE system-view The system view is displayed. ipv6 vpn6-instance vpn6-instance-name1 The IPv6 VPN instance view of VPN-spoke is displayed. vpn-target vpn-target1 &<1-8> import-extcommunity The VPN target extended community for the IPv6 VPN instance is created.
Page 359: Binding An Interface To An Ipv6 Vpn Instance
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The system view is displayed. ipv6 vpn6-instance vpn6-instance-name The IPv6 VPN instance view of the VPN-spoke is displayed. vpn-target vpn-target2 &<1-8> import-extcommunity The VPN target extended community for the IPv6 VPN instance is created. The VPN- IPv6 routes advertised by the Hub-PE are imported.
Page 360: Configuring Mp-Ibgp Between Hub-Pe And Spoke-Pe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration You can bind VLANIF interfaces to IPv6 VPN instances. Step 3 Run: ipv6 enable The IPv6 capability is enabled on the interface. Step 4 Run: ipv6 binding vpn6-instance vpn6-instance-name The interface is bound with the IPv6 VPN instance.
Page 361: Configuring Route Exchange Between Pe And Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration NOTE The 32-bit mask IP addresses of the loopback interfaces must be used to establish the MP-IBGP peer relationship between PEs. This can ensure the tunnel can be iterated. The route destined to the loopback interface is advertised to the remote PE based on IGP on the MPLS backbone network.
Page 362: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Configuring static routes between the Hub-PE and the Hub-CE If the Hub-CE uses the default route to access the Hub-PE, to advertise the default route to...
Page 363: Configuring A Tunnel Policy Applied To Bgp/Mpls Ipv6 Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run the display ipv6 routing-table command to check routing information on the Hub- CE and all the Spoke-CEs. ----End Example Run the preceding commands. If the routing table of the VPN-spoke has routes to all the Spoke stations, and the routing table of the VPN-hub has routes to the Hub and all the Spoke stations, it means the configuration succeeds.
Page 364: Configuring A Tunnel Policy
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration For configuration of LSPs and MPLS TE tunnels, refer to the Quidway S7700 Smart Routing Switch Configuration Guide - MPLS. Data Preparation To configure the tunnel policy, you need the following data.
Page 365: Applying The Tunnel Policy To The Ipv6 Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration is not selected except in the case of load balancing or when the preceding tunnels are in the Down state. For example, if the tunnel select-seq lsp gre load-balance-number 1 command is configured, a VPN selects GRE tunnels if no LSP exists.
Page 366: Configuring Inter-As Ipv6 Vpn-Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run the display ipv6 vpn6-instance verbose [ vpn6-instance-name ] command to check name of the tunnel policy of the IPv6 VPN instance . ----End Example Run the display tunnel-policy tunnel-policy-name command.
Page 367: Configuring Inter-As Ipv6 Vpn Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Pre-configuration Tasks Before configuring the IPv6 VPN-Option A, complete the following tasks: Configuring IGP for MPLS backbone networks in each AS to realize IP connectivity of the...
Page 368: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Procedure Step 1 4.4 Configuring Basic BGP/MPLS IPv6 VPN on each AS. Step 2 Configuring ASBR by considering the peer ASBR as its CE. Step 3 Configuring an IPv6 VPN instance for the PE and the ASBR separately. For more detail, refer 4.3 Configuring an IPv6 VPN...
Page 369: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.8.1 Establishing the Configuration Task Before configuring inter-AS IPv6 VPN OptionB, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task quickly and accurately.
Page 370: Configuring Mp-Ibgp Between Pes And Asbrs In The Same As
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.8.2 Configuring MP-IBGP Between PEs and ASBRs in the Same With extended community attributes added to BGP, MP-IBGP can advertise VPNv6 routes between PEs and ASBRs.
Page 371: Controlling The Receiving And Sending Of Vpn Routes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The system view is displayed. Step 2 Run interface interface-type interface-number The view of the interface connected with the ASBR interface is displayed. Step 3 Run ip address ip-address { mask | mask-length } The IPv4 address of the interface is configured.
Page 372: Optional) Storing Information About The Ipv6 Vpn Instance On The Asbrs
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The system view is displayed. Step 2 Run bgp as-number The BGP view is displayed. Step 3 Run ipv6-family vpnv6 The BGP IPv6 VPN address family is displayed.
Page 373: Optional) Enabling Next-Hop-Based Label Allocation On The Asbr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 3 Run route-distinguisher route-distinguisher The RD is configured for the IPv6 VPN instance. Step 4 Run vpn-target vpn-target &<1-8> import-extcommunity The VPN target extended community for the IPv6 VPN instance is created.
Page 374: Configuring Route Exchange Between Pe And Ce
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: bgp as-number The BGP view is display Step 3 Run: ipv6-family vpnv6 The BGP-VPNv6 view is displayed.
Page 375: Configuring Route Reflection For Bgp Vpnv6 Routes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Procedure Run the display bgp vpnv6 all routing-table command to check the VPN-IPv6 routing table on the PE or the ASBR. Run the display bgp vpnv6 all peer command to check information about all the BGP peers on the PE or the ASBR.
Page 376: Configuring The Client Pes To Establish Mp Ibgp Connections With The Rr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Client PEs. An RR can be a P, PE, ASBR, or other devices. To relieve the burden of an RR, you can configure the RR to maintain routing information instead of forwarding user data.
Page 377: Configuring The Rr To Establish Mp Ibgp Connections With All Client Pes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The RR is specified as the BGP peer. Step 4 Run: peer ipv4-address connect-interface interface-type interface-number The interface is specified as an interface to establish the TCP connection.
Page 378: Configuring Route Reflection For Bgp Vpnv6 Routes
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The interface is specified as an interface to establish the TCP connection. The IP address of the interface must be the same as the MPLS LSR ID. It is recommended to specify a loopback interface to establish the TCP connection.
Page 379: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Context Do as follows on the RR. Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: bgp as-number The BGP view is displayed.
Page 380: Maintaining Bgp/Mpls Ipv6 Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run the display bgp vpnv6 all group [ group-name ] command to check information about the IPv6 VPN peer group on the RR. ----End Example...
Page 381: Checking The Network Connectivity And Reachability
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run the display bgp vpnv6 { all | vpn6-instance vpn6-instance-name } group [ group- name ] command to check BGP IPv6 VPN peer group information.
Page 382: Viewing The Integrated Route Statistics Of All Ipv6 Vpn Instances
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 4.10.3 Viewing the Integrated Route Statistics of all IPv6 VPN Instances The comprehensive route statistics for IPv6 VPN Instances refer to the route statistics for all IPv6 VPN Instances.
Page 383: Debugging Bgp/Mpls Ipv6 Vpn
For more information, see the chapter "Information Center Configuration" in the Quidway S7700 Smart Routing Switch Configuration Guide - System Management. For the description about the debugging commands, refer to the Quidway S7700 Smart Routing Switch Debugging Reference. Procedure...
Page 384: Configuration Examples
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Run the debugging bgp update vpnv6 [ peer ipv4-address | ipv6-prefix ipv6-prefix- name | acl acl-number ] [ receive | send ] [ verbose ] command in the user view to enable the BGP Update packets debugging of VPN-IPv6 routes.
Page 385 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Figure 4-2 Networking diagram for configure basic BGP/MPLS IPv6 VPN vpna AS: 65410 AS: 100 vpnb GE2/0/0 GE2/0/0 GE1/0/0 GE1/0/0 VLANIF1011 VLANIF 1001 VLANIF 100...
Page 386 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration GigabitEthernet2/0/0 VLANIF 1011 1999::1/64 Configuration Roadmap The configuration roadmap is as follows: Configure an IGP protocol on the IPv4 public network to implement interconnection on the backbone network.
Page 387 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Set IPv6 or IPv4 addresses for interfaces. # Set the IPv6 address for the interface of CE1. [CE1] interface vlanif 100 [CE1-Vlanif100] ipv6 enable [CE1-Vlanif100] ipv6 address 2001::1 64...
Page 388 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 4 Establish a tunnel between PE1 and PE2. The MPLS LDP LSP is used in this example. # Enable MPLS and MPLS LDP on PE1.
Page 389 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 5 Configure the VPNv6 instance on PE1 and PE2. # Configure the IPv6 VPN instance vpna on PE1. [PE1] ipv6 vpn6-instance vpna [PE1-vpn6-instance-vpna] route-distinguisher 100:1...
Page 390 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [PE1] display ipv6 vpn6-instance verbose Total VPN6-Instances configured : 2 VPN6-Instance Name and ID : vpna, 1 Create date : 2009/05/17 15:38:28 UTC-08:00 Up time : 0 days, 00 hours, 07 minutes and 34 seconds...
Page 391 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 3.3.3.9 0 00:02:19 Established You can see that a VPNv6 peer relation is established between PE1 and PE2. Step 7 Configure BGP4+ on PE1 and CE1.
Page 392 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 9 Configure IS-ISv6 on PE2 and CE3. # Configure IS-ISv6 on PE2. [PE2] isis 10 vpn6-instance vpna [PE2-isis-10] network-entity 30.4444.4444.4444.4444.00 [PE2-isis-10] ipv6 enable [PE2-isis-10] ipv6 import-route bgp...
Page 393 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [PE1] ping ipv6 vpn6-instance vpna 1999::1 PING 1999::1 : 56 data bytes, press CTRL_C to break Reply from 1999::1 bytes=56 Sequence=1 hop limit=63 time = 94 ms...
Page 394 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ipv6 binding vpn6-instance vpnb ipv6 address 2003::2/64 interface Vlanif10 ip address 192.168.1.1 255.255.255.0 isis enable 1 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 100...
Page 395 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ip address 192.168.2.1 255.255.255.0 isis enable 1 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 20...
Page 396 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 101 port hybrid untagged vlan 101 interface GigabitEthernet2/0/0 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface GigabitEthernet3/0/0...
Page 397 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration peer 2001::2 enable return Configuration file of CE2 sysname CE2 ipv6 vlan batch 101 1011 interface Vlanif 101 ipv6 enable ipv6 address 2003::1/64 interface Vlanif 1011...
Page 398: Example For Configuring Hub&Spoke (Using Bgp4+ Between Pe And Ce)
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ipv6 vlan batch 101 1011 interface Vlanif101 ipv6 enable ipv6 address 2005::1/64 ripng 100 enable interface Vlanif1011 ipv6 enable ipv6 address 1999::1/64 ripng 100 enable...
Page 399 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Figure 4-3 Networking diagram for configuring Hub&Spoke AS: 65430 Hub-CE GE1/0/0 GE2/0/0 VLAN30 VLAN40 GE3/0/0 GE3/01 Hub-PE GE2/0/0 GE1/0/0 Loopback1 Loopback1 Loopback1 1.1.1.9/32 3.3.3.9/32 2.2.2.9/32...
Page 400 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Spoke-CE1 GigabitEthernet1/0/0 VLANIF 50 2001::1/64 Spoke-CE2 GigabitEthernet1/0/0 VLANIF 60 2002::1/64 Configuration Roadmap The configuration roadmap is as follows: Set up tunnel and IBGP peer relation between the Hub-PE and the Spoke-PE. Do not set up IBGP peer relation between Spoke-PEs because they do not exchange VPN routes.
Page 401 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The VPN targets of the two IPv6 VPNs on the Hub-PE are advertised by the two Spoke-PE, and the advertised VPN target is different from the received VPN target.
Page 402 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Create date : 2009/05/10 13:13:32 UTC-08:00 Up time : 0 days, 00 hours, 09 minutes and 40 seconds Route Distinguisher : 100:21 Import VPN Targets :...
Page 403 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [Hub-CE-bgp-af-ipv6] peer 2004::2 enable [Hub-CE-bgp-af-ipv6] import-route direct [Hub-CE-bgp-af-ipv6] quit [Hub-CE-bgp] quit # Configure the Hub-PE. [Hub-PE] bgp 100 [Hub-PE-bgp] ipv6-family vpn6-instance vpn_in [Hub-PE-bgp6-vpn_in] peer 2003::1 as-number 65430...
Page 404 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 5 Set up MP-IBGP peer relations between PEs. Set up MP-IBGP peer relation between the Spoke-PE and the Hub-PE, but do not set up the MP- IBGP peer relation between the Spoke-PEs.
Page 405 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 187/187/187 ms [Spoke-CE1] tracert ipv6 2002::1 traceroute to 2002::1 30 hops max,60 bytes packet 1 2001::2 31 ms...
Page 406 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration NextHop : :: LocPrf PrefVal Label Path/Ogn : ? ----End Configuration Files Configuration file of Spoke-CE1 sysname Spoke-CE1 ipv6 vlan batch 50 interface Vlanif50 ipv6 enable...
Page 407 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 bgp 100 peer 2.2.2.9 as-number 100 peer 2.2.2.9 connect-interface LoopBack1...
Page 408 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration peer 2.2.2.9 as-number 100 peer 2.2.2.9 connect-interface LoopBack1 ipv4-family unicast undo synchronization peer 2.2.2.9 enable ipv6-family vpnv6 policy vpn-target peer 2.2.2.9 enable ipv6-family vpn6-instance vpna...
Page 409 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid untagged vlan 20 bgp 65430 router-id 30.30.30.30 peer 2003::2 as-number 100 peer 2004::2 as-number 100 ipv6-family unicast...
Page 410: Example For Configuring Hub&Spoke (Using The Default Route Between Hub-Pe And Hub-Ce)
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet3/0/1 port hybrid pvid vlan 40 port hybrid untagged vlan 40 interface LoopBack1 ip address 2.2.2.9 255.255.255.255 bgp 100 peer 1.1.1.9 as-number 100 peer 1.1.1.9 connect-interface LoopBack1 peer 3.3.3.9 as-number 100...
Page 411 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Figure 4-4 Networking diagram for configuring Hub&Spoke AS: 65430 Hub-CE GE1/0/0 GE2/0/0 VLAN30 VLAN40 GE3/0/0 GE3/01 Hub-PE GE2/0/0 GE1/0/0 Loopback1 Loopback1 Loopback1 1.1.1.9/32 3.3.3.9/32 2.2.2.9/32...
Page 412 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Spoke-CE1 GigabitEthernet1/0/0 VLANIF 50 2001::1/64 Spoke-CE2 GigabitEthernet1/0/0 VLANIF 60 2002::1/64 Configuration Roadmap The configuration roadmap is as follows: Set up tunnel and IBGP peer relation between the Hub-PE and the Spoke-PE. Do not set up IBGP peer relation between Spoke-PEs because they do not exchange VPN routes.
Page 413 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration After the configuration, LDP peer relation can be set up between the Hub-PE and the Spoke- PEs. Run the display mpls ldp session command on each Switch, and you can see that the session status is Operational.
Page 414 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration After the configuration, run the display ipv6 vpn6-instance verbose command on the PEs, and you can view the configuration of the IPv6 VPN instances. Take the display on Hub-PE as an example.
Page 415 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration After the configuration, run the display bgp vpnv6 all peer command on a PE, and you can find that the BGP peer relation between the PE and the CE is in Established state. By running the ping ipv6 vpn6-instance, you can see that each PE can ping its connected CE.
Page 416 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [Hub-PE-bgp] peer 3.3.3.9 connect-interface loopback 1 [Hub-PE-bgp] ipv6-family vpnv6 [Hub-PE-bgp-af-vpnv6] peer 1.1.1.9 enable [Hub-PE-bgp-af-vpnv6] peer 3.3.3.9 enable [Hub-PE-bgp-af-vpnv6] quit After the configuration, run the display bgp vpnv6 all peer command on each PE, and you can see that the MP-IBGP peer relation between the PEs is in Established state.
Page 417 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration *> Network : FE80:: PrefixLen : 10 NextHop : :: LocPrf PrefVal Label : NULL Path/Ogn : ? After the configuration, the Spoke-CEs can ping each other. Run the tracert command, and you can see that the traffic between the Spoke-CEs is forwarded through the Hub-CE.
Page 418 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration *> Network : 2001:: PrefixLen : 64 NextHop : :: LocPrf PrefVal Label Path/Ogn : ? NextHop : 2001::2 LocPrf PrefVal Label Path/Ogn : 100 ? *>...
Page 419 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Configuration Files Configuration file of Spoke-CE1 sysname Spoke-CE1 ipv6 vlan batch 50 interface Vlanif50 ipv6 enable ipv6 address 2001::1/64 interface GigabitEthernet1/0/0 port hybrid pvid vlan 50...
Page 420 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration peer 2.2.2.9 as-number 100 peer 2.2.2.9 connect-interface LoopBack1 ipv4-family unicast undo synchronization peer 2.2.2.9 enable ipv6-family vpnv6 policy vpn-target peer 2.2.2.9 enable ipv6-family vpn6-instance vpna...
Page 421 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration policy vpn-target peer 2.2.2.9 enable ipv6-family vpn6-instance vpna peer 2002::1 as-number 65420 import-route direct ospf 1 area 0.0.0.0 network 3.3.3.9 0.0.0.0 network 11.1.1.0 0.0.0.255 return...
Page 422 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Configuration file of Hub-PE sysname Hub-PE ipv6 vlan batch 10 20 30 40 ipv6 vpn6-instance vpn_in route-distinguisher 100:21 vpn-target 100:1 import-extcommunity ipv6 vpn6-instance vpn_out route-distinguisher 100:22 vpn-target 200:1 export-extcommunity mpls lsr-id 2.2.2.9...
Page 423: Example For Configuring Inter-As Ipv6 Vpn Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration peer 3.3.3.9 enable ipv6-family vpnv6 policy vpn-target peer 1.1.1.9 enable peer 3.3.3.9 enable ipv6-family vpn6-instance vpn_out network :: 0 import-route direct ospf 1 area 0.0.0.0 network 2.2.2.9 0.0.0.0...
Page 424 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Configuration Roadmap The configuration roadmap is as follows: Set up the EBGP peer relation between the PE and the CE and set up MP-IBGP peer relation between the PE and the ASBR.
Page 425 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [ASBR-PE1] mpls [ASBR-PE1-mpls] quit [ASBR-PE1] mpls ldp [ASBR-PE1-mpls-ldp] quit [ASBR-PE1] interface vlanif 11 [ASBR-PE1-Vlanif11] mpls [ASBR-PE1-Vlanif11] mpls ldp [ASBR-PE1-Vlanif11] quit # Configure the basic MPLS function on ASBR-PE2 and enable LDP on the interface connected to PE2.
Page 426 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [CE1-Vlanif10] quit [CE1] bgp 65001 [CE1-bgp] router-id 10.10.10.10 [CE1-bgp] peer 2001::2 as-number 100 [CE1-bgp] ipv6-family unicast [CE1-bgp-af-ipv6] peer 2001::2 enable [CE1-bgp-af-ipv6] import-route direct [CE1-bgp-af-ipv6] quit [CE1-bgp] quit # On PE1, set up an EBGP peer relation between PE1 and CE1.
Page 427 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration BGP local router ID : 1.1.1.9 Local AS number : 100 Total number of peers : 2 Peers in established state : 2 Peer MsgRcvd...
Page 428 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [CE1] display ipv6 routing-table Routing Table : Public Destinations : 4 Routes : 4 Destination : ::1 PrefixLength : 128 NextHop : ::1 Preference Interface...
Page 429 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Destination : 2003:: PrefixLength : 64 NextHop : 2003::1 Preference Interface : Vlanif12 Protocol : Direct State : Active Adv Cost Tunnel ID : 0x0...
Page 430 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration PrefVal Label : NULL Path/Ogn : ? *> Network : FE80:: PrefixLen : 10 NextHop : :: LocPrf PrefVal Label : NULL Path/Ogn : ?
Page 431 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 11 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 10 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 bgp 100 peer 2.2.2.9 as-number 100...
Page 432 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface LoopBack1 ip address 2.2.2.9 255.255.255.255 bgp 100 peer 1.1.1.9 as-number 100 peer 1.1.1.9 connect-interface LoopBack1 ipv4-family unicast undo synchronization import-route direct peer 1.1.1.9 enable...
Page 433 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ipv4-family unicast undo synchronization peer 4.4.4.9 enable ipv6-family vpnv6 policy vpn-target peer 4.4.4.9 enable ipv6-family vpn6-instance vpn1 peer 2003::1 as-number 100 import-route direct ospf 1 area 0.0.0.0...
Page 434: Example For Configuring Dual-Homed Ces
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ipv6-family vpn6-instance vpn1 peer 2002::1 as-number 65002 import-route direct ospf 1 area 0.0.0.0 network 4.4.4.9 0.0.0.0 network 162.1.1.0 0.0.0.255 return Configuration file of CE2 sysname CE2...
Page 435 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Figure 4-6 Networking diagram of dual-homed CEs Loopback1 Loopback1 Loopback1 GE2/0/0 GE2/0/0 GE2/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE1/0/0 AS100 VPN Backbone GE2/0/0 GE3/0/0 GE2/0/0 GE3/0/0...
Page 436 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration GE3/0/0 VLANIF 1002 2006::1/64 Configuration Roadmap The configuration roadmap is as follows: Configure a basic BGP/MPLS IPv6 VPN. Enable load balancing for the data traffic to CE2 in the BGP view on CE1.
Page 437 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration After the configuration is complete, run the display ip routing-table command. you can see that PE1 and PE2 can learn the routes of Loopback1 interface of each other; PE2 and PE4 can learn routes of Loopback1 interface of each other.
Page 438 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration <PE1> display mpls ldp lsp LDP LSP Information ------------------------------------------------------------------------------- DestAddress/Mask In/OutLabel UpstreamPeer NextHop OutInterface ------------------------------------------------------------------------------- 1.1.1.9/32 3/NULL 5.5.5.5 127.0.0.1 InLoop0 *1.1.1.9/32 Liberal 3.3.3.9/32 NULL/1025 10.1.1.2 Vlanif10 3.3.3.9/32...
Page 439 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration # Enable IPv6, create a VPN instance, and set the RD and VPN target of the VPN instance. The VPN target set on the local PE must be the same as the VPN target of the MP-BGP peer PE so that the sites in the same VPN can access each other.
Page 440 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [CE1-bgp] peer 2002::2 as-number 100 [CE1-bgp] ipv6-family unicast [CE1-bgp-af-ipv6] peer 2001::2 enable [CE1-bgp-af-ipv6] peer 2002::2 enable [CE1-bgp-af-ipv6] import-route direct [CE1-bgp-af-ipv6] quit [CE1-bgp] quit # Configure PE1.
Page 441 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration [PE4] bgp 100 # Enter the view of the BGP-IPv6 instance. Specify CE2 as the EBGP peer and import the direct route. [PE4-bgp] ipv6-family vpn6-instance vpn1...
Page 442 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration # Enter the VPNv6 address family view and enable the exchange of the VPN IPv6 routing information between the peers. [PE3-bgp] ipv6-family vpnv6 [PE3-bgp-af-vpnv6] peer 1.1.1.1 enable [PE3-bgp-af-vpnv6] quit # Configure PE2.
Page 443 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Step 9 Verify the configuration. Check the BGP IPv6 routing table of CE2. You can see that the MED value of the route to 2005::/64 advertised by the PE3 is 120. This value is greater than the MED value of the route advertised by the PE4.
Page 444 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration NextHop : 2004::2 LocPrf PrefVal Label Path/Ogn : 100 ? *> Network : 2004::1 PrefixLen : 128 NextHop : :: LocPrf PrefVal Label Path/Ogn : ? *>...
Page 445 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Tunnel ID : 0x0 Label : NULL : 1470sec Destination : 2003:: PrefixLength : 64 NextHop : 2003::1 Preference Interface : Vlanif103 Protocol : Direct...
Page 446 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Interface : InLoopBack0 Protocol : Direct State : Active NoAdv Cost Tunnel ID : 0x0 Label : NULL : 11041sec Destination : 2001:: PrefixLength : 64...
Page 447 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration NextHop : 2001::2 Preference : 255 Interface : Vlanif101 Protocol : BGP State : Active Adv Cost Tunnel ID : 0x0 Label : NULL : 1242sec...
Page 448 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration vlan batch 10 101 ipv6 vpn6-instance vpn1 route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity mpls lsr-id 1.1.1.1 mpls mpls ldp isis 1 network-entity 10.0000.0000.0001.00 interface Vlanif10 ip address 100.1.1.1 255.255.255.252...
Page 449 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration mpls lsr-id 2.2.2.2 mpls mpls ldp isis 1 network-entity 10.0000.0000.0002.00 interface Vlanif20 ip address 100.2.1.1 255.255.255.252 isis enable 1 mpls mpls ldp interface Vlanif102 ipv6 enable...
Page 450 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ip address 100.3.1.1 255.255.255.252 isis enable 1 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid untagged vlan 10 interface GigabitEthernet2/0/0 port hybrid pvid vlan 30...
Page 451 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration mpls lsr-id 3.3.3.3 mpls mpls ldp isis 1 network-entity 10.0000.0000.0003.0 interface Vlanif30 ip address 100.3.1.2 255.255.255.252 isis enable 1 mpls mpls ldp interface Vlanif 103...
Page 452 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration mpls ldp isis 1 network-entity 10.0000.0000.0004.00 interface Vlanif40 ip address 100.4.1.2 255.255.255.252 isis enable 1 mpls mpls ldp interface Vlanif 104 ipv6 binding vpn6-instance vpn1...
Page 453: Example For Configuring A Vpnv6 Rr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration interface GigabitEthernet3/0/0 port hybrid pvid vlan 1002 port hybrid untagged vlan 1002 bgp 65420 router-id 20.20.20.20 peer 2003::2 as-number 100 peer 2004::2 as-number 100 ipv6-family unicast...
Page 454 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Configuration Roadmap The configuration roadmap is as follows: Set up MP-IBGP connections between the PEs and RR so that the PEs do not need to set up an MP-IBGP connection.
Page 455 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration Enable MPLS and MPLS LDP on the devices and interfaces along the LSP. The configuration procedure is not mentioned here. After the configuration, run the display mpls ldp session command, and you can see in the display that the Session State item is Operational.
Page 456 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration The configuration of PE2 is similar to the configuration of PE1, and is not mentioned. After the configuration, run the display bgp vpnv6 all peer command on the PEs, and you can see that the IBGP peer relation is set up between the PEs and RR and is in Established state.
Page 457 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration If CE1 and CE2 can ping each other, it indicates that the route reflection function is configured successfully. Configuration Files Configuration file of PE1 sysname PE1...
Page 458 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration sysname RR ipv6 vlan batch 10 20 mpls lsr-id 2.2.2.9 mpls mpls ldp interface Vlanif10 ip address 100.1.2.2 255.255.255.0 mpls mpls ldp interface Vlanif20 ip address 100.2.3.1 255.255.255.0...
Page 459 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity mpls lsr-id 3.3.3.9 mpls mpls ldp interface Vlanif20 ip address 100.2.3.2 255.255.255.0 mpls mpls ldp interface Vlanif40 ipv6 enable...
Page 460 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 4 BGP MPLS IPv6 VPN Configuration ipv6-family unicast undo synchronization peer 2001::2 enable import-route direct return Configuration file of CE2 sysname CE2 ipv6 vlan batch 40 interface Vlanif40 ipv6 enable ipv6 address 2002::1/64...
Page 461: Vll Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration VLL Configuration About This Chapter This chapter describes how to configure a VLL to transparently transmit data on the MPLS network. 5.1 Introduction to VLL A Virtual Leased Line (VLL) emulates the traditional leased line on the IP network, and provides asymmetric and low-cost digital data network (DDN) services.
Page 462 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration If the MPLS backbone network on which a Martini VLL is set up spans multiple ASs, you can configure the Martini VLL to be an inter-AS Martini VLL.
Page 463: Introduction To Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.1 Introduction to VLL A Virtual Leased Line (VLL) emulates the traditional leased line on the IP network, and provides asymmetric and low-cost digital data network (DDN) services. For users on both ends of a VLL, the VLL is similar to the traditional leased line.
Page 464: Vll Features Supported By The S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Attachment Circuit (AC) : AC is an independent link or circuit that connects CE and PE. The AC interface may be a physical interface or a logical interface. The AC attributes include the encapsulation type, MTU and interface parameters of specified link type.
Page 465 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration from one PE to another PE. Configuration command is run on the PE to map the static LSP to the CCC connection. SVC VLL The SVC implements VLL through static configuration. The SVC transfers L2VPN information without using the signaling protocols.
Page 466 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration The Kompella supports both local and remote connections. It supports inter-AS L2VPN in the following two modes: Multi-hop mode: adopts routes with BGP label. MP-EBGP mode: saves label block on the ASBR.
Page 467 For details on how to access the VLL through a sub-interface, see Connecting Sub-interfaces to a VLL Network in the Quidway S7700 Smart Routing Switch Configuration Guide - Ethernet. Processing Tags Carried in Packets by the VLL The system process packets according to the AC interface type and PW encapsulation type.
Page 468 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Table 5-2 Processing VLAN tags carried in packets from the PW by the AC AC Interface Type Processing of the VLAN Tag Ethernet, GE, XGE or Eth-Trunk interface Do not process the packet.
Page 469: Configuring Ccc Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Asymmetrically connected CEs One CE is connected to a PE through an AC and the other CE is dual-homed to PEs through two ACs, as shown in Figure 5-3.
Page 470: Enabling The Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Pre-configuration Tasks Before configuring the CCC VLL, complete the following task: Configuring the basic MPLS capability on the MPLS backbone network (PEs and P) Data Preparation To configure the CCC VLL, you need the following data.
Page 471: Creating A Remote Ccc Connection
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Context The local CCC connection is bidirectional, and thus only one connection is required. Do as follows on the PEs: Procedure Step 1 Run: system-view The system view is displayed.
Page 472: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Do as follows on the Ps that the VC passes through: Run: system-view The system view is displayed. Run: static-lsp transit lsp-name incoming-interface interface-type interface- number in-label in-label nexthop nexthop-address out-label out-label The P device is configured as a transit LSR of the static LSP.
Page 473: Configuring The Svc Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration total ccc vc : 1; local ccc vc : 0, 0 up remote ccc vc : 1, 1 up name: CE1-CE2, type: remote, state: up, intf: vlanif11 (up), in-label: 100 , out-label: 200 , nexthop: 10.1.1.1...
Page 474: Enabling Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Data Type and number of the interface accessing CE Destination LSR ID of SVC In-label and out-label values of L2VPN connection Tunnel policy of the SVC 5.4.2 Enabling MPLS L2VPN Before configuring an SVC VLL, you must enable MPLS L2VPN.
Page 475: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration NOTE To use an XGE interface, a GE interface, an Ethernet interface, or an Eth-Trunk interface of the S7700 as the AC interface of the PE, you need to perform step 3 to configure the Layer 2 interface as a Layer 3 interface.
Page 476: Configuring Martini Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <Quidway> display l2vpn ccc-interface vc-type static-vc up Total ccc-interface of SVC VC: 1 up (1), down (0) Interface Encap Type State VC Type Vlanif1110 vlan static-vc 5.5 Configuring Martini VLL This section describes how to configure a Martini VLL.
Page 477: Enabling Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.5.2 Enabling MPLS L2VPN Before configuring a Martini VLL, you must enable MPLS L2VPN. Context Do as follows on the PEs of the two ends of the VC:...
Page 478: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Step 4 Run: quit Return to the system view. Step 5 Run: interface interface-type interface-number The AC interface view is displayed. Step 6 (Optional) Run: undo portswitch The Layer 2 interface is configured as a Layer 3 interface.
Page 479: Configuring Kompella Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <Quidway> display mpls l2vc total LDP VC : 1 1 up 0 down *client interface : Vlanif1111 Administrator PW : no session state : up AC status : up...
Page 480: Enabling Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration The Kompella mode adopts the label block. Each CE is allocated with a label block that decides this CE can set up how many connections with other CEs. This permits some additional label to the VPN for the future extensibility.
Page 481: Configuring Bgp/Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration The MPLS L2VPN is enabled. ----End 5.6.3 Configuring BGP/MPLS L2VPN To configure a local Kompella connection, you do not need to configure the L2VPN capacity of BGP. Context For local connection, the configuration in this section is not required.
Page 482 When Huawei products are connected with non-Huawei products in Kompella mode, you can choose one of the following configurations on the S7700: l Configure the MTU of the L2VPN on the PE to be the same as that of non-Huawei products. l Use the ignore-mtu-match command to ignore the MTU matching check.
Page 483: Creating A Ce Connection
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.6.5 Creating a CE Connection Context A CE ID is used to uniquely identify a CE in a VPN. It is recommended that the CE IDs are numbered in series starting from 1.
Page 484: Optional) Configuring Bgp L2Vpn Features
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration The CE is created and the MPLS L2VPN CE view is displayed. Step 4 Run: connection [ ce-offset id ] interface interface-type interface-number [ tunnel- policy policy-name ] [ raw | tagged ] A CE connection is created.
Page 485 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration group group-name [ internal ] An IBGP peer group is created. Run: peer ip-address group group-name The peer is added to the peer group. Run: peer group-name connect-interface interface-type interface-number The interface is specified as an interface to establish the TCP connection.
Page 486: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.6.7 Checking the Configuration After a Kompella VLL is configured, you can view BGP and connection information about the Kompella VLL, L2VPN information on PEs, and information about the route target (RT) attribute list.
Page 487: Configuring Inter-As Martini Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration remote vpn site(s) : remote-pe-id route-distinguisher 3.3.3.9 100:1 Run the display mpls l2vpn { export-route-target-list | import-route-target-list } command. You can find that the route target is correctly configured. For example: <Quidway>...
Page 488: Configuring Inter-As Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Data Number of each AS 5.7.2 Configuring Inter-AS Option A In inter-AS Martini VLL OptionA, each ASBR must reserve a sub-interface for each inter-AS VC. Therefore, this solution is only applicable to the situation that the number of inter-AS VCs is small.
Page 489: Configuring The Inter-As Kompella Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration VC type : VLAN destination : 11.11.11.11 local group ID remote group ID local VC label : 23552 remote VC label 23552 local AC OAM State : up...
Page 490: Configuring The Inter-As Kompella Vll Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Inter-AS VPN-Option A If the number of VPNs and VPN routes on the PE is small, the inter-AS VPN Option A scheme can be used. When this scheme is used, the ASBR must support VPN instances and can manage VPN routes.
Page 491: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.8.3 Checking the Configuration After an inter-AS Kompella VLL is configured, you can view BGP and connection information about the Kompella VLL, L2VPN information on PEs, and information about the Route Target (RT) attribute list.
Page 492: Configuring Vll Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration route distinguisher: 100:1, MTU: 1500 import vpn target: 1:1, export vpn target: 1:1, remote vpn site(s) : remote-pe-id route-distinguisher 3.3.3.9 100:1 Run the display mpls l2vpn { export-route-target-list | import-route-target-list } command.
Page 493: Configuring Master And Backup Pws
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration NOTE To configure a Martini VLL or PWE3 for VLL FRR, you must use the PW template to configure a PW, enable the control word in the PW template.
Page 494 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Run: mpls l2vpn The MPLS L2VPN view is displayed. Run: mpls l2vpn default martini The system switches to the Martini mode. NOTE Before using the mpls l2vpn default martini command to set the behavior of the dynamic VC signaling to non-Notification mode, you need to delete the configurations of VCs (including PWE3 VCs and VPLS VCs) that support the Notification signaling.
Page 495: Optional) Configuring Fast Fault Notification - Physical Layer Fault Notification
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Run: ce ce-name id ce-id [ range ce-range ] [ default-offset ce-offset ] The MPLS-L2VPN-CE view is displayed. Run: connection [ ce-offset id ] interface interface-type interface-number [ tunnel-policy policy-name ] [ raw | tagged ] A master connection is created for the CE.
Page 496: Optional) Configuring Bfd For Pw
To detect statuses of the tunnels that carry PWs, you can configure BFD for tunnels. For detailed configuration, refer to the chapters "Basic MPLS Configuration" and "MPLS TE Configuration" in the Quidway S7700 Smart Routing Switch Configuration Guide - MPLS. 5.9.5 (Optional) Configuring the Revertive Switchover The revertive switching policies can be classified into three modes: immediate revertive mode, delayed revertive mode, and non-revertive mode.
Page 497: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration l Immediate revertive switchover: The local PE immediately switches traffic to the master PW and notifies the fault to the remote PE of the backup PW. The PE notifies the rectification of the fault to the remote PE of the backup PW after the period of resume-time.
Page 498 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration local forwarding state : forwarding local status code : 0x0 remote AC OAM state : up remote PSN state : up remote forwarding state: forwarding remote status code...
Page 499 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration VC last up time : 2010/12/01 10:00:00 VC total up time : 0 days, 2 hours, 20 minutes, 0 seconds CKey NKey PW redundancy mode : -- AdminPw interface...
Page 500: Maintaining Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration manual fault set or not: not set AC OAM state: BFD for PW session index: BFD for PW state: BFD for LSP state: true Local C bit is set,...
Page 501: Viewing Traffic Statistics On The Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration The function of collecting traffic statistics is only valid to the VLL connection that is created after this function is enabled. ----End 5.10.2 Viewing Traffic Statistics on the VLL This section describes how to view VLL traffic statistics on the specified interface.
Page 502: Monitoring The Running Status Of Vll
When a fault occurs, run the following debugging commands in the user view to locate the fault. For the procedure of displaying the debugging information, refer to the chapter "System Maintenance" in the Quidway S7700 Smart Routing Switch Configuration Guide - Device Management.
Page 503: Checking Connectivity Of The Vll Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Procedure Run the debugging mpls l2vpn { all | advertisement | download | error | event | oam- mapping |reroute | timer | connections [ interface interface-type interface-number ] } command in the user view to enable the debugging of the VLL.
Page 504: Configuration Examples
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration tracert vc { pw-type pw-id [ -exp exp-value | -f first-ttl | -m max-ttl | -r reply-mode | - t timeout-value ] * normal [ remote remote-ip-address ] [ full-lsp-path ] [ draft6 ] Checking the connectivity of the VLL network in Kompella mode –...
Page 505 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Figure 5-4 Networking diagram for configuring local CCC connection CE 2 GE1/0/0 CCC local connection CE 1 GE 2/0/0 GE 1/0/0 GE 1/0/0 Loopback1 1.1.1.9/32 Device Interface VLANIF interface...
Page 506 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <Quidway> system-view [Quidway] sysname CE2 [CE2] vlan 20 [CE2-vlan20] quit [CE2] interface gigabitethernet 1/0/0 [CE2-GigabitEthernet1/0/0]port link-type trunk [CE2-GigabitEthernet1/0/0]port trunk allow-pass vlan 20 [CE2-GigabitEthernet1/0/0]quit [CE2] interface vlanif 20 [CE2-Vlanif20] ip address 100.1.1.2 24...
Page 507 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Interface Encap Type State VC Type Vlanif10 ethernet Vlanif20 ethernet CE1 and CE2 can ping each other. Take CE1 for example. <CE1> ping 100.1.1.2 PING 100.1.1.2: 56 data bytes, press CTRL_C to break Reply from 100.1.1.2: bytes=56 Sequence=1 ttl=255 time=180 ms...
Page 508: Example For Configuring A Remote Ccc Connection
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration return Configuration file of CE2 sysname CE2 vlan batch 20 interface Vlanif 20 ip address 100.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20 return 5.11.2 Example for Configuring a Remote CCC Connection...
Page 509 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Loopback1 1.1.1.9/32 GigabitEthernet1/0/0 VLANIF 30 10.2.2.1/24 GigabitEthernet2/0/0 VLANIF 40 Loopback1 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 30 10.2.2.2/24 GigabitEthernet2/0/0 VLANIF 20 10.1.1.2/24 Loopback1 2.2.2.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 40 100.1.1.2/24...
Page 510 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Step 3 Assign an IP address to each VLANIF interface of the Switches. # Configure PE1. <Quidway> system-view [Quidway] sysname PE1 [PE1] interface loopback 1 [PE1-LoopBack1] ip address 1.1.1.9 32...
Page 511 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Step 5 Create the remote CCC connection between the two PEs. # Configure PE1: Enable MPLS L2VPN globally and create the remote CCC connection from CE1 to CE2. Connect the incoming interface of PE1 to CE1 and the outgoing interface of PE1 to the P.
Page 512 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Run the display mpls lsp command on the P, and you can view the label and interface information of the two static LSPs. <P> display mpls lsp -------------------------------------------------------------------------------...
Page 513 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration interface GigabitEthernet2/0/0 port hybrid pvid vlan 20 port hybrid tagged vlan 20 ccc CE1-CE2 interface Vlanif 10 in-label 100 out-label 200 nexthop 10.1.1.2 interface LoopBack1 ip address 1.1.1.9 255.255.255.255...
Page 514: Example For Configuring An Svc Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration port hybrid pvid vlan 40 port hybrid tagged vlan 40 ccc CE2-CE1 interface Vlanif 40 in-label 201 out-label 101 nexthop 10.2.2.2 interface LoopBack1 ip address 3.3.3.9 255.255.255.255 return...
Page 515 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Loopback1 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 30 10.2.2.2/24 GigabitEthernet2/0/0 VLANIF 20 10.1.1.2/24 Loopback1 2.2.2.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 40 100.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Enable MPLS and MPLS L2VPN.
Page 516 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration [P] mpls lsr-id 2.2.2.9 [P] mpls [P-mpls] quit [P] mpls ldp [P-mpls-ldp] quit [P] interface vlanif 20 [P-Vlanif20] mpls [P-Vlanif20] mpls ldp [P-Vlanif20] quit [P] interface vlanif 30...
Page 517 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <PE1> display mpls static-l2vc interface vlanif 10 *Client Interface : Vlanif10 is up AC Status : up VC State : up VC ID VC Type : VLAN Destination : 3.3.3.9...
Page 518 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.9 mpls mpls l2vpn mpls ldp interface Vlanif 10 mpls static-l2vc destination 3.3.3.9 transmit-vpn-label 100 receive-vpn-label interface Vlanif 20 ip address 10.1.1.1 255.255.255.0...
Page 519 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration interface LoopBack1 ip address 2.2.2.9 255.255.255.255 ospf 1 area 0.0.0.0 network 2.2.2.9 0.0.0.0 network 10.1.1.0 0.0.0.255 network 10.2.2.0 0.0.0.255 return Configuration file of PE2 sysname PE2 vlan batch 30 40 mpls lsr-id 3.3.3.9...
Page 520: Example For Configuring A Martini Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5.11.4 Example for Configuring a Martini VLL Networking Requirements As shown in Figure 5-7, CE1 and CE2 are connected to PE1 and PE2 respectively through VLANs. A Martini VLL is set up between CE1 and CE2.
Page 521 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Enable MPLS L2VPN and create VC connections on the PEs. Data Preparation To complete the configuration, you need the following data: IP address of the remote peer of each PE...
Page 522 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration [PE2-mpls-ldp] quit [PE2] interface vlanif 30 [PE2-Vlanif30] mpls [PE2-Vlanif30] mpls ldp [PE2-Vlanif30] quit Step 4 Set up a remote LDP session between PEs. # Configure PE1. [PE1] mpls ldp remote-peer 3.3.3.9 [PE1-mpls-ldp-remote-3.3.3.9] remote-ip 3.3.3.9...
Page 523 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Administrator PW : no session state : up AC state : up VC state : up VC ID : 101 VC type : VLAN destination : 3.3.3.9 local group ID...
Page 524 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration vlan batch 10 interface Vlanif10 ip address 100.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.9...
Page 525 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration interface Vlanif 30 ip address 10.2.2.2 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 30 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 20 interface LoopBack1 ip address 2.2.2.9 255.255.255.255...
Page 526: Example For Configuring A Local Kompella Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration vlan batch 40 interface Vlanif 40 ip address 100.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 40 return 5.11.5 Example for Configuring a Local Kompella VLL...
Page 527 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Data Preparation To complete the configuration, you need the following data: Names of VPN instances and RDs Names and IDs of the CEs (The CE IDs are globally unique.) CE range, namely, the label...
Page 528 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration primary CE1 and CE2 can ping each other. <CE1> ping 30.1.1.2 PING 30.1.1.2: 56 data bytes, press CTRL_C to break Reply from 30.1.1.2: bytes=56 Sequence=1 ttl=255 time=24 ms Reply from 30.1.1.2: bytes=56 Sequence=2 ttl=255 time=26 ms...
Page 529: Example For Configuring A Remote Kompella Connection
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration return Configuration file of CE2 sysname CE2 vlan batch 20 interface Vlanif20 ip address 30.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20 return 5.11.6 Example for Configuring a Remote Kompella Connection...
Page 530 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration GigabitEthernet1/0/0 VLANIF 10 30.1.1.1/24 GigabitEthernet1/0/0 VLANIF 40 30.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Configure routing protocols on the PEs and P on the backbone network to implement internetworking, and enable basic MPLS functions and LDP.
Page 531 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 127.0.0.1/32 Direct 0 127.0.0.1 InLoopBack0 127.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 168.1.1.0/24 Direct 0 168.1.1.1 Vlanif20 168.1.1.1/32 Direct 0 127.0.0.1 InLoopBack0 168.1.1.255/24 Direct 0 168.1.1.1 Vlanif20 169.1.1.0/24 OSPF 168.1.1.2 Vlanif20 255.255.255.255/32...
Page 532 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration [PE1-bgp] l2vpn-family [PE1-bgp-af-l2vpn] peer 3.3.3.9 enable [PE1-bgp-af-l2vpn] quit [PE1-bgp] quit # Configure PE2. [PE2] mpls l2vpn [PE2-l2vpn] quit [PE2] bgp 100 [PE2-bgp] peer 1.1.1.9 as-number 100 [PE2-bgp] peer 1.1.1.9 connect-interface loopback 1 [PE2-bgp] l2vpn-family [PE2-bgp-af-l2vpn] peer 1.1.1.9 enable...
Page 533 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration CE name: ce1, id: 1, Rid type status peer-id route-distinguisher interface primary or not ---------------------------------------------------------------------------- 3.3.3.9 100:1 Vlanif10 primary CE1 and CE2 can ping each other. <CE1> ping 30.1.1.2 PING 30.1.1.2: 56...
Page 534 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration mpls l2vpn vpn1 encapsulation vlan route-distinguisher 100:1 vpn-target 1:1 import-extcommunity vpn-target 1:1 export-extcommunity ce ce1 id 1 range 10 default-offset 0 connection ce-offset 2 interface Vlanif 10 interface LoopBack1 ip address 1.1.1.9 255.255.255.255...
Page 535 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration return Configuration file of PE2 sysname PE2 vlan batch 30 40 mpls lsr-id 3.3.3.9 mpls mpls l2vpn mpls ldp interface Vlanif 30 ip address 169.1.1.2 255.255.255.0 mpls mpls ldp...
Page 536: Example For Configuring The Inter-As Martini Vll Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 40 return 5.11.7 Example for Configuring the Inter-AS Martini VLL Option Networking Requirements As shown in Figure 5-10, the Option A scheme is used to establish the inter-AS Martini VLL.
Page 537 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration GigabitEthernet2/0/0 VLANIF 40 30.1.1.1/24 Loopback0 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 50 100.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Run an IGP protocol on the backbone network so that the devices in the same AS can communicate with each other.
Page 538 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <PE1> ping 2.2.2.9 PING 2.2.2.9: 56 data bytes, press CTRL_C to break Reply from 2.2.2.9: bytes=56 Sequence=1 ttl=255 time=180 ms Reply from 2.2.2.9: bytes=56 Sequence=2 ttl=255 time=90 ms Reply from 2.2.2.9: bytes=56 Sequence=3 ttl=255 time=60 ms...
Page 539 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration [PE2-l2vpn] quit [PE2] interface vlanif 50 [PE2-Vlanif50] mpls l2vc 3.3.3.9 100 [PE2-Vlanif50] quit # Configure CE1. [CE1] interface vlanif 10 [CE1-Vlanif10] ip address 100.1.1.1 255.255.255.0 [CE1-Vlanif10] quit # Configure CE2.
Page 540 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration <ASBR-PE2> display mpls l2vc interface Vlanif 30 *client interface : Vlanif30 is up session state : up AC state : up VC state : up VC ID : 100...
Page 541 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration vlan batch 10 interface Vlanif10 ip address 100.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.9...
Page 542 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration ip address 10.1.1.2 255.255.255.0 isis enable 1 mpls mpls ldp interface Vlanif30 mpls l2vc 1.1.1.9 100 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20 interface GigabitEthernet2/0/0...
Page 543: Example For Configuring The Inter-As Kompella Vll Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration mpls l2vpn mpls l2vpn default martini mpls ldp isis 1 network-entity 10.0000.0000.0004.00 interface Vlanif40 ip address 30.1.1.2 255.255.255.0 isis enable 1 mpls mpls ldp interface Vlanif50 mpls l2vc 3.3.3.9 100...
Page 544 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Figure 5-11 Networking diagram for configuring the inter-AS Kompella VLL Option A BGP/MPLS Backbone BGP/MPLS Backbone AS 100 AS 200 Loopback1 Loopback1 Loopback1 Loopback1 4.4.4.4/32 2.2.2.2/32 3.3.3.3/32 1.1.1.1/32...
Page 545 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Establish an IBGP adjacency between the PE and the ASBR-PE in an AS. Set up a Kompella VLL connection between the PE and the ASBR-PE in an AS.
Page 546 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 60/78/90 ms Step 3 Enable MPLS and establish the LSP. Enable MPLS and establish LDP LSP on the ASBR-PE and the PEs in the same AS.
Page 547 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration Local AS number : 100 Total number of peers : 1 Peers in established state : 1 Peer MsgRcvd MsgSent OutQ Up/Down State PrefRcv 2.2.2.2 00:00:03 Established Step 5 Enable BGP peers in the BGP L2VPN address family view.
Page 548 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration [ASBR-PE1-mpls-l2vpn-ce-vpn1-ce2] connection ce-offset 1 interface vlanif 30 [ASBR-PE1-mpls-l2vpn-ce-vpn1-ce2] quit [ASBR-PE1-mpls-l2vpn-vpn1] quit # Configure ASBR-PE2. [ASBR-PE2] mpls l2vpn [ASBR-PE2-l2vpn] quit [ASBR-PE2] mpls l2vpn vpn1 encapsulation vlan [ASBR-PE2-mpls-l2vpn-vpn1] route-distinguisher 200:1...
Page 549 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration manual fault set or not: not set AC OAM state: BFD for PW session index: BFD for PW state: invalid BFD for LSP state: true Local C bit is not set...
Page 550 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.1 mpls mpls l2vpn mpls ldp...
Page 551 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration vlan batch 20 30 mpls lsr-id 2.2.2.2 mpls mpls l2vpn mpls ldp interface Vlanif20 ip address 20.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif30 interface GigabitEthernet1/0/0 port link-type trunk...
Page 552 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 30 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 40 interface LoopBack1 ip address 3.3.3.3 255.255.255.255 bgp 200 peer 4.4.4.4 as-number 200...
Page 553 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 5 VLL Configuration bgp 200 peer 3.3.3.3 as-number 200 peer 3.3.3.3 connect-interface LoopBack1 ipv4-family unicast undo synchronization peer 3.3.3.3 enable l2vpn-family policy vpn-target peer 3.3.3.3 enable ospf 1 area 0.0.0.0 network 40.1.1.0 0.0.0.3 network 4.4.4.4 0.0.0.0...
Page 554: Pwe3 Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration PWE3 Configuration About This Chapter This chapter describes how to configure PWE3 to transparently transmit data on the MPLS network. 6.1 Introduction to PWE3 PWE3 refers to a Layer 2 service-bearing technology on a PSN that emulates basic characteristics of ATM services, FR services, Ethernet services, low-speed TDM services, and SONET/SDH services.
Page 555 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.9 Configuring Dynamic BFD for PW This section describes how to configure dynamic BFD for PW. After dynamic BFD for PW is configured, the fault on a PW can be rapidly detected and upper-layer applications can be immediately switched.
Page 556: Introduction To Pwe3
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.1 Introduction to PWE3 PWE3 refers to a Layer 2 service-bearing technology on a PSN that emulates basic characteristics of ATM services, FR services, Ethernet services, low-speed TDM services, and SONET/SDH services.
Page 557: Pwe3 Features Supported By The S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.2 PWE3 Features Supported by the S7700 PWE3 can be classified into the static PW and dynamic PW based on implementation schemes, and can be classified into the single-hop PW and multi-hop PW based on networking types.
Page 558 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-2 Exchange of LDP-PW packets Loopback1 Loopback1 1.1.1.1/32 2.2.2.2/32 mpls l2vc 2.2.2.2 101 mpls l2vc 1.1.1.1 101 parameter match , VC up parameter match , VC up...
Page 559 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-3 Process of tearing down an SH-PW Loopback1 Loopback1 2.2.2.2/32 1.1.1.1/32 mpls l2vc 2.2.2.2 101 mpls l2vc 1.1.1.1 101 VC Deletion Withdraw Release Withdraw VC Deletion When PE1 does not forward packets sent from PE2 for a specific cause, that is, PE2 is no longer a peer of PE2, PE1 sends a Withdraw message to PE2.
Page 560 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration An MH-PW is a set of two or more contiguous PW segments between two U-PEs. Switching labels at PW label layer is required. Figure 6-5 shows an MH-PW that functions as a single point-to-point PW.
Page 561 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration After a session is set up, BFD quickly sends detection packets. VCCV ping is used to periodically check the information consistency of the control plane and data plane.
Page 562 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-7 Asymmetrically connected CEs backbone Site2 Site1 Inter-AS PWE3 In actual network, multiple sites of a VPN of a user may connect with multiple service providers of different ASs or with multiple ASs of a service provider. The VPN is called inter-AS VPN.
Page 563 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration As shown in Figure 6-8, as for ASBR1 in the AS 100, ASBR2 is a CE. Similarly, as for ASBR2, ASBR1 is a CE. Option A is easy to implement. No inter-AS configuration is needed on the ASBRs. The interfaces that connect the ASBR do not need to be configured with any IP addresses.
Page 564 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration – The source PE of the PWE3 tracert continues to send MPLS echo request packets with the Time-to-Live (TTL) of the outer label from one to a certain value and the TTL of the inner label as one.
Page 565 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration addition, the PW label switching from the downstream mapping information sent by each device can be seen. – On SPE1, start PWE3 tracert to UPE1 or to SPE2 and UPE2. The PWE3 tracert to UPE1 is the same as the PWE3 SH tracert.
Page 566: Configuring The Attributes Of A Pw Template
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration VCCV-PING The S7700 supports VC Connectivity Verification (VCCV) negotiation and VCCV-PING on U-PEs of a static PW, dynamic PW, SH-PW, and MH-PW. The VCCV-PING has two modes: CW mode and Label Alert mode.
Page 567: Creating A Pw Template
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration NOTE Some PW attributes such as MTU, PW type, and encapsulation type are obtained from the interface directly connected to a CE. Therefore, those parameters do not need to be configured manually.
Page 568: Setting The Attributes For A Pw Template
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.3.3 Setting the Attributes for a PW Template A PW template has the attributes such as the IP address of the peer, control word, tunnel policy name, and MTU.
Page 569: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration If you specify a PW attribute by using a command line, the same PW attribute specified in the PW template does not function on the PW to which this PW template is applied.
Page 570: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.4.1 Establishing the Configuration Task Before configuring a static PW, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task correctly and quickly.
Page 571: Creating A Static Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration mpls l2vpn MPLS L2VPN is enabled. Before configuring an MPLS L2VC connection, enable MPLS L2VPN. ----End 6.4.3 Creating a Static PW Before configuring a static PW, you must specify the VC label.
Page 572: Configuring A Dynamic Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Procedure Run the display mpls static-l2vc [ vc-id | interface interface-type interface-number | state { down | up } ] command to check information about a specified static PW on a PE.
Page 573: Enabling Mpls L2Vpn
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configuring basic MPLS functions on the backbone Establishing tunnels between PEs based on the tunnel policy Setting up remote LDP sessions between PEs Data Preparation To configure a dynamic PW, you need the following data.
Page 574: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration The system view is displayed. Step 2 Run: interface interface-type interface-number [ .subinterface-number ] The interface view of the interface attached to an AC is displayed. Step 3 (Optional) Run: undo portswitch A Layer 2 interface is switched to a Layer 3 interface.
Page 575: Configuring Pw Switching
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Administrator PW : no session state : up AC state : up VC state : up VC ID : 100 VC type : VLAN destination : 6.6.6.6 local group ID...
Page 576: Configuring Pw Switching
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Applicable Environment To support Multi-Hop, the PW switching is needed. MH-PW requires switching labesl at PW label layer while forwarding packets. PW switching must be configured on the S-PE with high performance and capability of setting up large numbers of MPLS LDP sessions.
Page 577 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Static PWs switching: Both PWs used to switch are static. Dynamic PWs switching: Both PWs used to switch are dynamic. Mixed PWs switching: One of the PWs is dynamic, and the other is static.
Page 578: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Run: system-view The system view is displayed. Run: mpls switch-l2vc ip-address vc-id between ip-address vc-id trans trans- label recv received-label encapsulation encapsulation-type [ mtu mtu- value ] [ control-word [ cc { alert | cw } * cv lsp-ping ] | [ no-control-...
Page 579: Configuring A Backup Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Local/Remote Control Word : Enable/Enable, Enable/Enable Local/Remote VCCV Capability : cw alert lsp-ping bfd/cw alert lsp-ping bfd, cw alert lsp-ping bfd/cw alert lsp-ping bfd Switch-l2vc tunnel info 1 tunnels for peer 5.5.5.9 NO.0...
Page 580: Configuring A Backup Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Pre-configuration Tasks Before configuring a backup PW, complete the following tasks: Configuring an IGP on PEs and Ps in the MPLS backbone to implement IP interworking Enabling MPLS on PEs and Ps...
Page 581: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration A Layer 2 interface is switched to a Layer 3 interface. When using XGE, GE, Ethernet, and Eth-Trunk interfaces as AC interfaces, run this command to switch Layer 2 interfaces to Layer 3 interfaces.
Page 582 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration manual fault : not set active state : active forwarding entry : exist link state : up local VC MTU : 1500 remote VC MTU : 1500 Local VCCV...
Page 583: Configuring Static Bfd For Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration reroute policy : delay 30 s, resume 0 s reason of last reroute : Remote PSN fault time of last reroute : 0 days, 0 hours, 18 minutes, 2 seconds...
Page 584: Enabling Bfd Globally
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.8.2 Enabling BFD Globally BFD needs to be enabled globally before static BFD for PW is configured. Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: BFD is enabled on the local node and the BFD view is displayed.
Page 585: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration A BFD configuration entry is created. The outbound interface interface interface-type interface-number bound to a BFD session refers to the AC interface where the PW resides.If a management PW is bound to the BFD session, the interface should be the loopback interface where the management PW resides.
Page 586: Configuring Dynamic Bfd For Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Example Run the display bfd configuration pw interface interface-type interface-number [ secondary ] [ verbose ] command, and you can view the discriminators of the BFD session, the type of the PW that is bound to the BFD session, and the type of the BFD session. For example: <Quidway>...
Page 587: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.9.1 Establishing the Configuration Task Before configuring dynamic BFD for PW, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task correctly and quickly.
Page 588: Enabling The Sending Of Bfd For Pw Packets To The Protocol Stack
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Step 2 Run: BFD is enabled on the local node and the BFD view is displayed. ----End 6.9.3 Enabling the Sending of BFD for PW Packets to the Protocol...
Page 589: Optional) Adjusting Bfd Parameters
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.9.5 (Optional) Adjusting BFD Parameters BFD detection parameters include the multiple of the local BFD detection time, expected minimum interval for receiving packets, and expected minimum interval for sending packets.
Page 590: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Step 2 Run: interface interface-type interface-number The AC interface view is displayed. Step 3 Run: mpls l2vpn pw bfd [ detect-multiplier multiplier | min-rx-interval rx-interval | min-tx-interval tx-interval ] * [ remote-vcid vc-id ] [ secondary ] A BFD session is dynamically set up to detect PWs.
Page 591: Configuring Pwe3 Frr
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Proc interface status : Disable Bind Application : L2VPN | OAM_MANAGER | MPLSFW Session Description : -- -------------------------------------------------------------------------------- Total Commit/Uncommit CFG Number : 1/0 Run the display bfd session pw interface interface-type interface-number [ secondary ]...
Page 592: Configuring Primary And Backup Pws
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration After the PW FRR is configured, L2VPN traffic is rapidly switched to the backup path when a fault occurs on the master path. After the fault on the master path is rectified, the L2VPN traffic is switched back to the master path according to the revertive switchover policy.
Page 593 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration In the networking where CEs are asymmetrically connected to PEs, you need to configure primary and backup PWs. The primary and backup PWs must be of the same type.
Page 594: Optional) Configuring Bfd For Pw
To detect statuses of the tunnels that carry PWs, you can configure BFD for tunnels. For detailed configuration, refer to the chapters "Basic MPLS Configuration" and "MPLS TE Configuration" in the Quidway S7700 Smart Routing Switch Configuration Guide - MPLS. 6.10.4 (Optional) Configuring the Revertive Switchover The revertive switching policies can be classified into three modes: immediate revertive mode, delayed revertive mode, and non-revertive mode.
Page 595: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Step 3 Run: mpls l2vpn reroute { { delay delay-time | immediately } [ resume resume-time ] | never } The revertive switchover policy is configured. The types of the revertive switchover on PEs are as follows: l Immediate revertive switchover: The local PE immediately switches traffic to the master PW and notifies the fault to the remote PE of the backup PW.
Page 596 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration <Quidway> display mpls l2vc interface vlanif 10 *client interface : Vlanif10 is up session state : up AC state : up VC state : up VC ID : 100...
Page 597 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration local control word : enable remote control word : enable tunnel policy name : -- traffic behavior name : -- PW template name : 1to2 primary or secondary...
Page 598: Configuring Inter-As Pwe3
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Run the display mpls l2vpn forwarding-info [ vc-label ] interface interface-type interface- number command, and you can view that the ENTRYTYPE of the master PW is SEND, PWSTATE is ACTIVE, BFDSTATE is UP, and ADMIN is UP. For example: <Quidway>...
Page 599: Configuring Inter-As Pwe3-Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Pre-configuration Tasks Before configuring inter-AS PWE3, complete the following tasks: Configuring an IGP protocol for MPLS backbone networks in each AS to ensure IP connectivity within an AS...
Page 600 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Run the display mpls l2vc remote-info [ vc-id ] command to check information about the PW of the remote PE on the local PE. ----End Example Run the display mpls l2vc [ vc-id | interface interface-type interface-number ] command. In the command output, you can find that "VC state"...
Page 601: Maintaining Pwe3
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.12 Maintaining PWE3 This section describes how to maintain PWE3. Detailed operations include PW connectivity detection, and PW fault location. 6.12.1 Verifying the Connectivity of a PW After PWE3 is configured, the PWE3 connectivity can be detected.
Page 602: Locating A Fault Of A Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration – Label Alert channel ping vc pw-type pw-id [ -c echo-number | -m time-value | -s data-bytes | -t timeout- value | -exp exp-value | -r reply-mode | -v ] * label-alert [ remote remote-ip-address | draft6 ] Locate a fault on the PW.
Page 603: Debugging A Pwe3
In the case of operational faults, run the debugging command in the user view to debug the PWE3 and locate the faults. For the procedure of outputting the debugging information, refer to the chapter "Maintenance and Debugging" in the Quidway S7700 Smart Routing Switch Configuration Guide - Device Management.
Page 604: Example For Configuring A Dynamic Sh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.13.1 Example for Configuring a Dynamic SH-PW Networking Requirements As shown in Figure 6-12, PE1 and PE2 are connected through an MPLS backbone network. An LSP needs to be used to set a dynamic PW between PE1 and PE2.
Page 605 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Run an IGP protocol on the devices of the backbone network to implement connectivity. Configure the basic MPLS functions on the backbone network and set up an LSP. Set up the MPLS LDP peer relation between the two PEs on the two ends of the PW.
Page 606 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 0.00% packet loss round-trip min/avg/max = 90/136/230 ms Step 3 Enable MPLS and set up tunnels and LDP sessions. Enable MPLS on the backbone network, set up LSPs and LDP remote sessions between the PEs.
Page 607 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration local status code : 0x0 remote AC OAM state : up remote PSN state : up remote forwarding state: forwarding remote status code : 0x0 BFD for PW...
Page 608 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration sysname PE1 vlan batch 10 20 mpls lsr-id 192.2.2.2 mpls mpls l2vpn mpls ldp mpls ldp remote-peer 192.3.3.3 remote-ip 192.3.3.3 interface Vlanif10 mpls l2vc 192.3.3.3 100 interface Vlanif20 ip address 10.1.1.1 255.255.255.0...
Page 609 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface LoopBack0 ip address 192.4.4.4 255.255.255.255 ospf 1 area 0.0.0.0 network 192.4.4.4 0.0.0.0 network 10.1.1.0 0.0.0.255 network 10.2.2.0 0.0.0.255 return Configuration file of PE2 sysname PE2 vlan batch 30 40 mpls lsr-id 192.3.3.3...
Page 610: Example For Configuring A Static Mh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.13.2 Example for Configuring a Static MH-PW Networking Requirements You need to set up a static MH-PW between U-PE1 and U-PE2. The S-PE is the switching node, which sets up a two-hop static PW.
Page 611 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Loopback0 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 60 100.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Run a routing protocol on the devices of the backbone network to implement connectivity.
Page 612 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [U-PE1-pw-template-pwt] quit [U-PE1] mpls l2vpn [U-PE1-l2vpn] quit [U-PE1] interface vlanif 10 [U-PE1-Vlanif10] mpls static-l2vc pw-template pwt 100 transmit-vpn-label 100 receive-vpn-label 100 [U-PE1-Vlanif10] quit # Configure S-PE. [S-PE] mpls l2vpn [S-PE-l2vpn] quit [S-PE] mpls switch-l2vc 5.5.5.9 100 trans 200 recv 200 between 1.1.1.9 100 trans...
Page 613 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration VC ID : 100, 100 VC Type : VLAN VC State : up In/Out Label : 200/200, 100/100 Control Word : Disable, Disable VCCV Capability : alert lsp-ping bfd, alert lsp-ping bfd Switch-l2vc tunnel info 1 tunnels for peer 5.5.5.9...
Page 614 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration pw-template pwt peer-address 3.3.3.9 mpls ldp interface Vlanif10 mpls static-l2vc pw-template pwt 100 transmit-vpn-label 100 receive-vpn-label interface Vlanif20 ip address 10.1.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk...
Page 615 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration return Configuration file of S-PE sysname S-PE vlan batch 30 40 mpls lsr-id 3.3.3.9 mpls mpls l2vpn mpls switch-l2vc 5.5.5.9 100 trans 200 recv 200 between 1.1.1.9 100 trans 100...
Page 616 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration port link-type trunk port trunk allow-pass vlan 40 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 50 interface LoopBack0 ip address 4.4.4.9 255.255.255.255 ospf 1 area 0.0.0.0 network 4.4.4.9 0.0.0.0...
Page 617: Example For Configuring A Dynamic Mh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 60 return 6.13.3 Example for Configuring a Dynamic MH-PW Networking Requirements As shown in Figure 6-14, U-PE1 and U-PE2 are connected through the MPLS backbone network.
Page 618 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration GigabitEthernet2/0/0 VLANIF 50 40.1.1.1/24 Loopback0 4.4.4.9/32 S-PE GigabitEthernet1/0/0 VLANIF 30 20.1.1.2/24 GigabitEthernet2/0/0 VLANIF 40 30.1.1.1/24 Loopback0 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 60 100.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Run an IGP protocol on the devices of the backbone network to implement connectivity.
Page 619 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration <S-PE> display ip routing-table Route Flags: R - relied, D - download to fib ------------------------------------------------------------------------------ Routing Tables: Public Destinations : 18 Routes : 18 Destination/Mask Proto Cost Flags NextHop Interface 1.1.1.9/32 OSPF...
Page 620 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [P1-mpls-ldp] quit [P1] interface vlanif 20 [P1-Vlanif20] mpls [P1-Vlanif20] mpls ldp [P1-Vlanif20] quit [P1] interface vlanif 30 [P1-Vlanif30] mpls [P1-Vlanif30] mpls ldp [P1-Vlanif30] quit # Configure S-PE. [S-PE] mpls lsr-id 3.3.3.9...
Page 621 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration LDP Session(s) in Public Network Codes: LAM(Label Advertisement Mode), SsnAge Unit(DDDD:HH:MM) A '*' before a session means the session is being deleted. ------------------------------------------------------------------------------ PeerID Status SsnRole SsnAge KASent/Rcv ------------------------------------------------------------------------------ 1.1.1.9:0...
Page 622 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configure the dynamic PW on the U-PE. Enable dynamic PW switching on the S-PE. # Configure U-PE1. [U-PE1] mpls l2vpn [U-PE1-l2vpn] quit [U-PE1] interface vlanif 10 [U-PE1-Vlanif10] mpls l2vc pw-template pwt 100 [U-PE1-Vlanif10] quit # Configure S-PE.
Page 623 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration VC last up time : 2011/01/27 12:31:31 VC total up time : 0 days, 2 hours, 12 minutes, 51 seconds CKey NKey : 15 PW redundancy mode AdminPw interface...
Page 624 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Reply from 100.1.1.2: bytes=56 Sequence=5 ttl=255 time=130 ms --- 100.1.1.2 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 120/150/180 ms Information about the path between CE1 and CE2 is as follows: [CE1] tracert 100.1.1.2...
Page 625 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface LoopBack0 ip address 1.1.1.9 255.255.255.255 ospf 1 area 0.0.0.0 network 10.1.1.0 0.0.0.255 network 1.1.1.9 0.0.0.0 return Configuration file of P1 sysname P1 vlan batch 20 30 mpls lsr-id 2.2.2.9...
Page 626 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration remote-ip 5.5.5.9 interface Vlanif30 ip address 20.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif40 ip address 30.1.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 30...
Page 627 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration return Configuration file of U-PE2 sysname U-PE2 vlan batch 50 60 mpls lsr-id 5.5.5.9 mpls mpls l2vpn pw-template pwt peer-address 3.3.3.9 control-word mpls ldp mpls ldp remote-peer 3.3.3.9 remote-ip 3.3.3.9...
Page 628: Example For Configuring A Mixed Mh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.13.4 Example for Configuring a Mixed MH-PW Networking Requirements U-PE1 and U-PE2 are connected through the MPLS backbone network. You need to create a mixed MH-PW between U-PE1 and U-PE2 with the S-PE as the switching node.
Page 629 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Loopback0 3.3.3.9/32 GigabitEthernet1/0/0 VLANIF 10 100.1.1.1/24 GigabitEthernet1/0/0 VLANIF 60 100.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Run an IGP protocol on the devices of the backbone network to implement connectivity.
Page 630 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration The configuration procedure is not mentioned. Step 4 Create a VC connection. Enable MPLS L2VPN on U-PE1, U-PE2, and S-PE. Create a dynamic VC connection U-PE1 and a static VC connection on U-PE2. Configure a mixed switching PW on the S-PE.
Page 631 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration active state : active forwarding entry : exist link state : up local VC MTU : 1500 remote VC MTU : 1500 local VCCV : alert lsp-ping bfd...
Page 632 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configuration Files Configuration file of CE1 sysname CE1 vlan batch 10 interface Vlanif10 ip address 100.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return...
Page 633 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface Vlanif20 ip address 10.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif30 ip address 20.1.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20...
Page 634 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration ospf 1 area 0.0.0.0 network 20.1.1.0 0.0.0.255 network 30.1.1.0 0.0.0.255 network 3.3.3.9 0.0.0.0 return Configuration file of P2 sysname P2 vlan batch 40 50 mpls lsr-id 4.4.4.9 mpls...
Page 635: Example For Configuring Static Bfd For Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration mpls static-l2vc pw-template pwt 200 transmit-vpn-label 100 receive-vpn-label interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 50 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 50 interface LoopBack0 ip address 5.5.5.9 255.255.255.255...
Page 636 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-16 Networking diagram for configuring static BFD for PW Loopback1 Loopback1 2.2.2.2/32 4.4.4.4/32 GE1/0/0 GE1/0/1 GE1/0/1 GE1/0/0 Loopback1 1.1.1.1/32 GE1/0/0 GE1/0/1 GE1/0/0 Loopback1 GE1/0/0 Loopback1 3.3.3.3/32 5.5.5.5/32...
Page 637 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configuration Roadmap The configuration roadmap is as follows: Configure the MPLS network to make the network layer reachable. On the AC interface of PE1, configure PW1 (from PE1 to PE2) and PW2 (from PE1 to PE3).
Page 638 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 200.2.1.0/30 OSPF 200.1.1.2 Vlanif30 255.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 Step 3 Configure the basic MPLS capabilities on the MPLS backbone network. # Enable MPLS, and set LSR-ID as the IP address of the Loopback1 interface. Enable MPLS and MPLS LDP on interfaces on the backbone network.
Page 639 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration NOTE If the PEs are directly connected, you do not need to manually configure remote LDP sessions between them. # Configure PE1. [PE1] mpls ldp remote-peer 4.4.4.4 [PE1-mpls-ldp-remote-4.4.4.4] remote-ip 4.4.4.4 [PE1-mpls-ldp-remote-4.4.4.4] quit...
Page 640 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [PE2] pw-template 2to1 [PE2-pw-template-2to1] peer 1.1.1.1 [PE2-pw-template-2to1] control-word [PE2-pw-template-2to1] quit [PE2] interface vlanif 50 [PE2-Vlanif50] mpls l2vc pw-template 2to1 100 [PE2-Vlanif50] quit # Configure PE3. [PE3] mpls l2vpn...
Page 641 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration AdminPw link state : -- *client interface : Vlanif10 is up Administrator PW : no session state : up AC state : up VC state : up VC ID...
Page 642 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [PE1] bfd 1to3 bind pw interface vlanif 10 secondary [PE1-bfd-lsp-session-1to3] discriminator local 13 [PE1-bfd-lsp-session-1to3] discriminator remote 31 [PE1-bfd-lsp-session-1to3] commit [PE1-bfd-lsp-session-1to3] quit # Configure PE2. [PE2] bfd [PE2-bfd] quit...
Page 643 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration AC state : up VC state : up VC ID : 100 VC type : VLAN destination : 4.4.4.4 local group ID remote group ID local VC label...
Page 644 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration local control word : enable remote control word : enable tunnel policy : -- traffic behavior : -- PW template name : 1to3 primary or secondary : secondary...
Page 645 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration destination : 4.4.4.4 local group ID remote group ID local VC label : 23552 remote VC label local AC OAM State : up local PSN State : up...
Page 646 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration NKey : 15 PW redundancy mode : -- AdminPw interface : -- AdminPw link state : -- reroute policy : delay 30 s, resume 0 s reason of last reroute...
Page 647 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface Vlanif20 ip address 100.1.1.1 255.255.255.252 mpls mpls ldp interface Vlanif30 ip address 200.1.1.1 255.255.255.252 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 10 port hybrid tagged vlan 10...
Page 648 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration port hybrid tagged vlan 20 interface LoopBack1 ip address 2.2.2.2 255.255.255.255 ospf 1 area 0.0.0.0 network 2.2.2.2 0.0.0.0 network 100.1.1.0 0.0.0.3 network 100.2.1.0 0.0.0.3 return Configuration file of P2...
Page 649 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration control-word mpls ldp mpls ldp remote-peer 1.1.1.1 remote-ip 1.1.1.1 interface Vlanif40 ip address 100.2.1.2 255.255.255.252 mpls mpls ldp interface Vlanif50 mpls l2vc pw-template 2to1 100 interface GigabitEthernet1/0/0 port hybrid pvid vlan 40...
Page 650: Example For Configuring Dynamic Bfd For Sh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration mpls l2vc pw-template 3to1 200 interface GigabitEthernet1/0/0 port hybrid pvid vlan 60 port hybrid tagged vlan 60 interface GigabitEthernet1/0/1 port hybrid pvid vlan 70 port hybrid tagged vlan 70 interface LoopBack1 ip address 5.5.5.5 255.255.255.255...
Page 651 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-17 Networking diagram for configuring dynamic BFD for SH-PW MPLS Backbone Loopback0 Loopback0 Loopback0 2.2.2.9/32 1.1.1.9/32 3.3.3.9/32 GE2/0/0 GE2/0/0 GE2/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE1/0/0 GE1/0/0 Device Interface...
Page 652 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration LSR IDs of the devices VC-ID of the PW BFD parameters Procedure Step 1 Configure interface addresses for CE, PE,and P according to Figure 6-17, including VLAN and VLANIF interfaces.
Page 653 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Routing Tables: Public Destinations : 11 Routes : 11 Destination/Mask Proto Cost Flags NextHop Interface 1.1.1.9/32 Direct 0 127.0.0.1 InLoopBack0 2.2.2.9/32 OSPF 100.1.1.2 Vlanif20 3.3.3.9/32 OSPF 100.1.1.2 Vlanif20 100.1.1.0/30...
Page 654 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Tunnel ID Type Destination Token ---------------------------------------------------------------------- 0x10000 2.2.2.9 0x10001 3.3.3.9 Run the display mpls ldp session command on PE, and you can see that the LDP peer relation between the PE and the neighboring P is in Operational state.
Page 655 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [PE1-pw-template-1to2] peer-address 3.3.3.9 [PE1-pw-template-1to2] control-word [PE1-pw-template-1to2] quit [PE1] interface vlanif 10 [PE1-Vlanif10] mpls l2vc pw-template 1to2 100 [PE1-Vlanif10] quit # Configure PE2. [PE2] mpls l2vpn [PE2-l2vpn] quit [PE2] pw-template 2to1 [PE2-pw-template-2to1] peer 1.1.1.9...
Page 656 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Step 6 Configure the dynamic BFD on PEs. # Configure PE1. [PE1] bfd [PE1-bfd] quit [PE1] bfd for pw enable [PE1] interface vlanif 10 [PE1-Vlanif10] mpls l2vpn pw bfd min-rx-interval 100 min-tx-interval 100 [PE1-Vlanif10] quit # Configure PE2.
Page 657 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration manual fault : not set active state : active forwarding entry : exist link state : up local VC MTU : 4470 remote VC MTU : 4470 local VCCV...
Page 658 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface Vlanif10 ip address 10.1.1.1 255.255.255.252 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 bfd for pw enable mpls lsr-id 1.1.1.9...
Page 659 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration mpls ldp interface Vlanif20 ip address 100.1.1.2 255.255.255.252 mpls mpls ldp interface Vlanif40 ip address 100.2.1.1 255.255.255.252 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 20 port hybrid tagged vlan 20...
Page 660: Example For Configuring Dynamic Bfd For Mh-Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration port hybrid pvid vlan 40 port hybrid tagged vlan 40 interface Loopback0 ip address 3.3.3.9 255.255.255.255 ospf 1 area 0.0.0.0 network 3.3.3.9 0.0.0.0 network 100.2.1.0 0.0.0.3 return Configuration file of CE2...
Page 661 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Figure 6-18 Networking diagram for configuring dynamic BFD for MH-PW Loopback0 Loopback0 Loopback0 2.2.2.9/32 3.3.3.9/32 4.4.4.9/32 S-PE GE1/0/0 GE1/0/0 GE2/0/0 GE2/0/0 GE1/0/0 GE2/0/0 Loopback0 Loopback0 5.5.5.9/32 1.1.1.9/32 GE2/0/0...
Page 662 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configuration Roadmap The configuration roadmap is as follows: Run an IGP protocol on the devices of the backbone network to implement connectivity. Configure the basic MPLS functions on the backbone network and set up an LSP. Set up MPLS LDP peer relations between U-PE1 and S-PE, and between U-PE2 and S-PE.
Page 663 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [P1] interface vlanif 20 [P1-Vlanif20] ip address 10.1.1.2 24 [P1-Vlanif20] quit [P1] interface vlanif 30 [P1-Vlanif30] ip address 20.1.1.1 24 [P1-Vlanif30] quit [P1] ospf 1 [P1-ospf-1] area 0.0.0.0 [P1-ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.255...
Page 664 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration <S-PE> display ip routing-table Route Flags: R - relied, D - download to fib ------------------------------------------------------------------------------ Routing Tables: Public Destinations : 17 Routes : 17 Destination/Mask Proto Cost Flags NextHop Interface 1.1.1.9/32 OSPF...
Page 665 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration [P1] interface vlanif 20 [P1-Vlanif20] mpls [P1-Vlanif20] mpls ldp [P1-Vlanif20] quit [P1] interface Vlanif 30 [P1-Vlanif30] mpls [P1-Vlanif30] mpls ldp [P1-Vlanif30] quit # Configure S-PE. [S-PE] mpls lsr-id 3.3.3.9...
Page 666 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration LDP Session(s) in Public Network Codes: LAM(Label Advertisement Mode), SsnAge Unit(DDDD:HH:MM) A '*' before a session means the session is being deleted. ------------------------------------------------------------------------------ PeerID Status SsnRole SsnAge KASent/Rcv ------------------------------------------------------------------------------ 1.1.1.9:0...
Page 667 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration NOTE PWE3 does not support point-to-multipoint (P2MP). When you create an MPLS L2VC on an ATM sub- interface, the ATM sub-interface must be in the point-to-point (P2P) type. When you configure the transparent transmission of ATM cells, the type of the ATM sub-interface is not restricted.
Page 668 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration up time : 0 days, 0 hours, 0 minutes, 59 seconds last change time : 0 days, 0 hours, 0 minutes, 59 seconds VC last up time : 2010-11-26 08:25:38...
Page 669 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration local status code : 0x0 remote AC OAM state : up remote PSN state : up remote forwarding state: forwarding remote status code : 0x0 Dynamic BFD for PW...
Page 670 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Total UP/DOWN Session Number : 1/0 ----End Configuration Files Configuration file of CE1 sysname CE1 vlan batch 10 interface Vlanif10 ip address 100.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk...
Page 671 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration area 0.0.0.0 network 10.1.1.0 0.0.0.255 network 1.1.1.9 0.0.0.0 return Configuration file of P1 sysname P1 vlan batch 20 30 mpls lsr-id 2.2.2.9 mpls mpls ldp interface Vlanif20 ip address 10.1.1.2 255.255.255.0...
Page 672 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration mpls ldp interface Vlanif40 ip address 30.1.1.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0 port hybrid pvid vlan 30 port hybrid tagged vlan 30 interface GigabitEthernet2/0/0 port hybrid pvid vlan 40...
Page 673 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration vlan batch 50 60 bfd for pw enable mpls lsr-id 5.5.5.9 mpls mpls l2vpn pw-template pwt peer-address 3.3.3.9 control-word mpls ldp mpls ldp remote-peer 3.3.3.9 remote-ip 3.3.3.9 interface Vlanif50 ip address 40.1.1.2 255.255.255.0...
Page 674: Example For Configuring Inter-As Pwe3-Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 6.13.8 Example for Configuring Inter-AS PWE3-Option A Networking Requirements As shown in Figure 6-19, the Option A scheme is used to establish the inter-AS PWE3. Figure 6-19 Networking diagram for configuring inter-AS PWE3-Option A...
Page 675 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration Configuration Roadmap The configuration roadmap is as follows: Run an IGP protocol on the backbone network so that the devices in the same AS can communicate with each other.
Page 676 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration 1.1.1.9/32 ISIS 10.1.1.1 Vlanif20 2.2.2.9/32 Direct 0 127.0.0.1 InLoopBack0 10.1.1.0/24 Direct 0 10.1.1.2 Vlanif20 10.1.1.2/32 Direct 0 127.0.0.1 InLoopBack0 10.1.1.255/32 Direct 0 127.0.0.1 InLoopBack0 127.0.0.0/8 Direct 0 127.0.0.1 InLoopBack0 127.0.0.1/32...
Page 677 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration # Configure CE1. [CE1] interface vlanif 10 [CE1-Vlanif10] ip address 100.1.1.1 255.255.255.0 [CE1-Vlanif10] quit # Configure CE2. [CE2] interface vlanif 50 [CE2-Vlanif50] ip address 100.1.1.2 255.255.255.0 [CE2-Vlanif50] quit Step 5 Verify the configuration.
Page 678 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration VC state : up VC ID : 100 VC type : VLAN destination : 4.4.4.9 local group ID remote group ID local VC label : 21505 remote VC label...
Page 679 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface Vlanif10 ip address 100.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.9...
Page 680 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration interface Vlanif30 mpls l2vc 1.1.1.9 100 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 30 interface LoopBack0 ip address 2.2.2.9 255.255.255.255...
Page 681 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 6 PWE3 Configuration network-entity 10.0000.0000.0004.00 interface Vlanif40 ip address 30.1.1.2 255.255.255.0 isis enable 1 mpls mpls ldp interface Vlanif50 mpls l2vc 3.3.3.9 100 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 40...
Page 682: Vpls Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VPLS Configuration About This Chapter This chapter describes the principle, applications, and configurations of VPLS. 7.1 Introduction to VPLS The Virtual Private LAN Service (VPLS), also called the Transparent LAN Service (TLS) or virtual private switched network service, is an L2VPN technology that is based on Multi- Protocol Label Switching (MPLS) and Ethernet technologies.
Page 683 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration When deploying VPLS in a larger scope, PEs or CEs may belong to different ASs. In such a situation, you cannot directly establish PWs between PEs based on LDP. To address the problem, you can configure inter-AS LDP VPLS.
Page 684: Introduction To Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.1 Introduction to VPLS The Virtual Private LAN Service (VPLS), also called the Transparent LAN Service (TLS) or virtual private switched network service, is an L2VPN technology that is based on Multi- Protocol Label Switching (MPLS) and Ethernet technologies.
Page 685: Vpls Features Supported By The S7700
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The Pseudo Wire (PW) is a virtual connection used to transmit frames between two PEs. The PE establishes and maintains PWs through signaling and the two PEs on both ends of a PW maintain the PW status.
Page 686 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Control Plane and Data Plane The control plane of the VPLS PE has the following functions: Member discovery: To find all the other PEs in the same VPLS, implement it by manually configuring or by automatically running certain protocols.
Page 687 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The sub-interfaces can be dotlq sub-interfaces, QinQ sub-interfaces, VLAN mapping sub- interfaces, or VLAN stacking sub-interfaces. When XGE, GE, Ethernet, or Eth-Trunk interfaces are used as AC interfaces, the outer tags carried in the packets sent from the AC to the PW are C tags (inserted by user devices, which are meaningless to the SP) by default.
Page 688 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Table 7-2 Processing tags carried in packets from the PW by the AC AC Interface Type Processing of the Tag Ethernet, GE, or XGE interface Do not process the packet.
Page 689 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Figure 7-3 HVPLS model basic VPLS full mesh In the HVPLS model, PEs falls into the following two types: Underlayer PE (UPE) It refers to the user aggregation device. It is directly connected with the CE. It is only necessary for the UPE to set up the connection with a PE in the VPLS fully-connected network.
Page 690 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VLL Accessing the VPLS As shown in Figure 7-4, in the HVPLS, SPE1 and SPE2 support VPLS. VSIs of the SPEs adopt LDP as the signaling protocol of the VPLS.
Page 691 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Figure 7-5 Networking diagram of the static VLL accessing the VPLS network in dual-homed mode SPE1 SPE3 UPE1 UPE2 SPE4 SPE2 LDP Message As shown in Figure 7-5, if a fault occurs on the LSP between the UPE1 and the SPE1, SPE1 detects the fault and asks the other SPEs to delete the related MAC addresses by sending LDP messages.
Page 692 NOTE For detailed principles of VPLS MAC Ping and VPLS MAC Trace, refer to the Chapter "VPLS" in the Quidway S7700 Smart Routing Switch Feature Description. S7700 supports the following VPLS network detection modes: Non-NQA mode: indicates that the network detection is implemented through a command line.
Page 693 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Figure 7-6 Typical networking of a CE dual homed to the VPLS network VPLS Data flow 1 Data flow 2 As shown in Figure 7-6, a ring is formed by PE2, PE3, and the CE. Therefore, STP needs to be enabled on the ring to prevent the loop.
Page 694: Mac Address Learning
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ASBRs of different ASs are inter-connected in back-to-back mode. Switch 1 and Switch 2 (Switch 3 and Switch 4) communicate with each other in either of the following modes: –...
Page 695 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration forward packets. The PE identifies the remote MAC addresses through the PW and the directly- connected MAC addresses through the AC. The MAC address learning has the following two modes: Qualified: The PE identifies the MAC addresses according to the MAC addresses of the Ethernet packets and the VLAN tags, that is, based on every VLAN of every VSI.
Page 696: Configuring Kompella Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.3 Configuring Kompella VPLS This section describes how to configure Kompella VPLS. Detailed operations include configuring BGP as the signaling protocol, and configuring VPN targets to implement automatic discovery of VPLS PEs.
Page 697: Enabling The Bgp Peer To Exchange Vpls Information
NOTE For details of commands in BGP VPLS address family view, refer to the chapter "IP Routing Commands" in the Quidway S7700 Smart Routing Switch Command Reference. Do as follows on the PEs of the two ends of the PW:...
Page 698: Creating A Vsi And Configuring Bgp Signaling
NOTE For information about commands in the BGP VPLS sub-address family view, refer to the chapter "IP Routing Commands" in the Quidway S7700 Smart Routing Switch Command Reference. 7.3.3 Creating a VSI and Configuring BGP Signaling This part describes how to configure Kompella VPLS. Detailed operations include creating and configuring VSIs (set RDs and VPN targets of the VSIs), configuring BGP, and creating site connections.
Page 699 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration pwsignal bgp The PW signaling protocol is configured as BGP and the VSI-BGP view is displayed. Step 4 Run: route-distinguisher route-distinguisher The RD of the VSI is configured.
Page 700: Optional) Configuring Huawei Devices To Communicate With Non-Huawei Devices
7.3.4 (Optional) Configuring Huawei Devices to Communicate with Non-Huawei Devices When interconnecting a Huawei device with other vendor's devices, you need to set the global encapsulation type of Kompella VPLS on the Huawei device, and configure the Huawei device to ignore the MTU match check.
Page 701: Binding The Vsi To An Ac Interface
The sub-interfaces can be dotlq sub-interfaces, QinQ sub-interfaces, VLAN mapping sub-interfaces, or VLAN stacking sub-interfaces. For details on how to access the VPLS through a sub-interface, see Connecting Sub-interfaces to a VPLS Network in the Quidway S7700 Smart Routing Switch Configuration Guide - Ethernet.
Page 702 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Run: interface { ethernet | gigabitethernet | xgigabitethernet } interface- number The Ethernet interface view is displayed. (Optional) Run: undo portswitch The Layer 2 interface is configured as a Layer 3 interface.
Page 703: Optional) Configuring The Features Of Kompella Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration NOTE Member interfaces of a trunk cannot be Eth-Trunk interfaces. Run: eth-trunk trunk-id The interface is added into the Eth-Trunk. Before adding an interface into an Eth-Trunk, ensure the interface is not configured with any Layer 3 attributes such as IP address and any services.
Page 704: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The BGP view is displayed. Step 3 Run: vpls-family The BGP-VPLS sub-address family view is displayed. Step 4 Run: peer { group-name | ipv4-address } reflect-client The route reflector (RR) and its client are configured.
Page 705 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration PW MAC Learn Style : unqualify Encapsulation Type : vlan : 1500 Diffserv Mode : uniform Mpls Exp : -- DomainId : 255 Domain Name Ignore AcState : disable...
Page 706: Configuring Martini Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.4 Configuring Martini VPLS This section describes how to configure Martini VPLS, with the signaling type beling LDP. 7.4.1 Establishing the Configuration Task Before configuring Martini VPLS, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data.
Page 707: Creating A Vsi And Configuring Ldp Signaling
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Data Preparation To configure Martini VPLS, you need the following data. Data VSI name VSI ID IP address of the peer and tunnel policy to establish the peer Binding interface of the VSI 7.4.2 Creating a VSI and Configuring LDP Signaling...
Page 708: Binding The Vsi To An Ac Interface
The sub-interfaces can be dotlq sub-interfaces, QinQ sub-interfaces, VLAN mapping sub-interfaces, or VLAN stacking sub-interfaces. For details on how to access the VPLS through a sub-interface, see Connecting Sub-interfaces to a VPLS Network in the Quidway S7700 Smart Routing Switch Configuration Guide - Ethernet.
Page 709 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration (Optional) Run: undo portswitch The Layer 2 interface is configured as a Layer 3 interface. Run: l2 binding vsi vsi-name The VSI is bound to the Ethernet interface.
Page 710: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Before adding an interface into an Eth-Trunk, ensure the interface is not configured with any Layer 3 attributes such as IP address and any services. An Ethernet interface can join only one Eth-Trunk interface. To join another Eth- Trunk interface, the Ethernet interface must quit from the original one.
Page 711 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Example Run the display vsi [ name vsi-name ] [ verbose ] command. You can view that the item "VSI State" is displayed as "up". If verbose is selected, the item "Signaling" is displayed as "ldp" and the item "VC State"...
Page 712: Configuring Ldp Hvpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Local VSI description: Remote VSI description: PW State: Up local remote ------------------------------------------------ VSI Name: ldpvpls ldpvpls VSI ID: VPN Type: Martini VPLS Martini VPLS Admin State: Oper State:...
Page 713: Configuring Spe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Data Preparation To configure the HVPLS, you need the following data. Data Corresponding relationship between the UPE and the SPE IP address of the peer VSI name, VSI ID, and the interface bound with VSI Tunnel policy 7.5.2 Configuring SPE...
Page 714: Configuring Upe
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.5.3 Configuring UPE This part describes how to configure a UPE to establish the VSI peer relationships with SPEs. Context The configuration of the UPE is similar to that on the PE of the VPLS fully-connected network.
Page 715: Configuring The Static Vll To Access The Vpls Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VSI State : up ..Run the display vsi remote ldp [ router-id ip-address ] [ pw-id pw-id ] command. If information about the remote VSI established through LDP is displayed, it means that the configuration succeeds.
Page 716: Configuring A Upe To Access An Spe Through A Static Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Data ID of the destination LSR of the static VLL Received and sent label of the static VLL Tunnel policy of the static VLL 7.6.2 Configuring a UPE to Access an SPE Through a Static VLL Context Do as follows on the UPE.
Page 717: Binding The Vsi Of The Spe With The Vll
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Enter the interface view. NOTE The encapsulation modes of the VLL and VPLS must be the same regardless of the access mode.
Page 718: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The VSI view is created and the static member discovery is enabled. Step 3 Run: pwsignal ldp The LDP is specified as the PW signaling protocol and the VSI LDP view is displayed.
Page 719 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Run the display vsi remote ldp [ router-id ip-address ] [ pw-id pw-id ] command to check information about the remote VSI. Run the display vpls connection [ ldp | vsi vsi-name ] [ down | up ] [ verbose ] command to check information about the VPLS connection.
Page 720: Configuring Inter-As Kompella Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ..Run the display vsi remote ldp [ router-id ip-address ] [ pw-id pw-id ] command. If information about the remote VSI established through LDP is displayed, it means that the configuration succeeds.
Page 721: Configuring Inter-As Kompella Vpls Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Configuring the VSI on the PE connected with the CE and binding the VSI to the AC interface Configuring the IP address on the CE interface that accesses the PE...
Page 722: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration NOTE In inter-AS VPLS Option A, for the same VPLS network, the VPN target of the VSI on the ASBR and that on the PE in the same AS must be matched. The VPN target of the VSI on the ASBR and that on the PE in different ASs need not be matched.
Page 723 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Run the display bgp vpls all command on the PE or ASBR. You can view information about the VPLS label block on the ASBR. For example: <Quidway> display bgp vpls all BGP Local Router ID : 1.1.1.1, Local AS Number : 100...
Page 724: Configuring Inter-As Martini Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 192.3.3.3 Egress Info: Succeeded in tracing the destination address 00e0-5952-6f01. 7.8 Configuring Inter-AS Martini VPLS When deploying VPLS in a larger scope, PEs or CEs may belong to different ASs. In such a situation, you cannot directly establish PWs between PEs based on LDP.
Page 725: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Context The configuration of inter-AS Martini VPLS Option A is as follows: 7.3.7 Checking the Configuration for each AS Configuring the ASBR by regarding the peer ASBR as the local CE No inter-AS-related configuration needs to be performed on the ASBR.
Page 726 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Member Discovery Style : static PW MAC Learn Style : unqualify Encapsulation Type : vlan : 1500 Diffserv Mode : uniform Mpls Exp : -- DomainId Domain Name...
Page 727: Configuring Dual-Homed Kompella Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration PW State: Up local remote ------------------------------------------------ VSI Name: ldpvpls ldpvpls VSI ID: VPN Type: Martini VPLS Martini VPLS Admin State: Oper State: VSI MTU: 1500 1500 CE Count: Actual IP Addr: 9.9.9.9...
Page 728: Establishing The Configuration Task
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.9.1 Establishing the Configuration Task Before configuring dual-homed Kompella VPLS, familiarize yourself with the applicable environment, complete the pre-configuration tasks, and obtain the required data. This can help you complete the configuration task quickly and accurately.
Page 729 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The system view is displayed. Step 2 Run: vsi vsi-name auto VSIs are created and the automatic member discovery mechanism is adopted. The Kompella VPLS does not directly operate on the connection between CEs. Each CE has a globally unique number.
Page 730: Configuring The Multi-Homed Preference For A Vsi
Configuration Guide - VPN 7 VPLS Configuration Step 9 is configured only when the PE communicates with non-Huawei devices. Before performing Step 9, check the encapsulation type of the VSI on the peer PE. The local VSI and peer VSI can communicate only when the VSI encapsulation type of the peer PE is the same as that configured for the local PE.
Page 731: Binding A Vsi To An Ac Interface
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.9.4 Binding a VSI to an AC Interface According to different AC link types, you can bind a VSI to AC interfaces in different views. Context For the configuration procedure, see "Binding the VSI to the Interface Connected with CE".
Page 732: Configuring Related Parameters Of A Vsi
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration -------------------------------------------------------------------------------- *> 2 4.4.4.4 35840 4.4.4.4 Run the display vpls connection command on the PE. You can view that the status of the VPLS connection on the PE is "up". For example: <Quidway>...
Page 733: Configuring Mac Address Learning
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Context Do as follows on the PEs of the both ends of the PW: Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: vsi vsi-name [ auto | static ] The VSI view is displayed.
Page 734 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: mac-address aging-time aging-time The aging time of MAC address entries for the VPLS is configured.
Page 735: Configuring A Vsi To Ignore The Ac Status
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.10.4 Configuring a VSI to Ignore the AC Status When the services running on the old network will switch to the new network, you can configure a VSI to ignore the AC status.
Page 736: Configuring Suppression On Vpls Traffic
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration The VSI can be Up only if at least one AC interface or the UPE PW is Up. After you configure a VSI to ignore the AC status, the VSI can keep Up when the VSI PW is Up. That is, the VSI status bears no relation to the AC status.
Page 737: Configuring Vsi-Based Traffic Suppression
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Figure 7-11 Networking where the VPLS network is deployed over the edge layer Access Ethernet Aggregation Edge PE-AGG DSLAM VPLS PE-AGG DSLAM Pre-configuration Tasks Before configuring the suppression on broadcast traffic based on VSIs, complete the following...
Page 738: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Procedure Step 1 Run: system-view The system view is displayed. Step 2 Run: vsi vsi-name The VSI view is displayed. Step 3 Run: broadcast-suppression cir cir-value cbs cbs-value The broadcast traffic is suppressed based on VSIs.
Page 739: Maintaining Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.12 Maintaining VPLS Maintaining VPLS involves collecting, viewing, and clearing VPLS PW traffic statistics, checking consistency of VPN configurations, enabling/disabling VSIs, clearing MAC address entries, diagnosing MAC address learning capacity, detecting the forwarding process of VPLS multicast traffic, checking the VPLS network connectivity, and detecting IP addresses.
Page 740: Checking The Traffic On A Vpls Pw
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.12.2 Checking the Traffic on a VPLS PW After VPLS traffic statistics are enabled, you can view information about the traffic on VPLS PWs. Context NOTE If a PW becomes Down in five minutes, the traffic calculated before the PW becomes Down is not used to calculate the 5-minute traffic rate.
Page 741: Checking The Consistency Of Vpn Configurations(Service Ping)
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.12.4 Checking the Consistency of VPN Configurations(Service Ping) Checking the consistency of VPN configurations, you can locate faults on the VPN connection. Context NOTE To reduce the bandwidth consumption, the ping vpn-config command only sends one probe packet and set timeout period for waiting for a Response packet to 10 seconds.
Page 742: Enabling Or Disabling Vsi
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Run the debugging mpls packet [ error ] [ acl acl-number ] [ inlabel outer-in-label [ inner-in-label ] ] [ l2vpn-in-interface interface-type interface-number ] command in the user view to enable the MPLS packet debugging.
Page 743: Checking The Mac Address Learning Capability
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Procedure Run the undo mac-address static mac-address interface-type interface-number vlanif interface-number vsi vsi-name command to clear the MAC address entries of the VSI. Run the undo mac-address { dynamic | static | all } command to clear the dynamic, static, or all the MAC address entries.
Page 744: Checking Connectivity Of The Vpls Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Procedure Run: mac-populate vsi vsi-name mac mac-address [ packet-num num | flood ] * A test on the MAC address learning capacity is initiated by adding an OAM MAC address to the device.
Page 745: Configuration Examples
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Context To check connectivity of a VPLS network, configure a VPLS network and do as follows on the Procedure Run: ping vpls mac mac-address vsi vsi-name [ vlan vlan-id | -c count | -m time- value | -s packsize | -t timeout | -exp exp | -r replymode | -h ttl ] Connectivity of the Layer 2 forwarding link on the VPLS network is checked.
Page 746 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration established with LDP as the VPLS signaling, and VPLS is configured to implement the interworking between CE1 and CE2. Figure 7-12 Networking diagram for configuring Martini VPLS Loopback1...
Page 747 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Data Preparation To complete the configuration, you need the following data: Names and IDs of VSIs IP addresses of peers and tunnel policy used for setting up peer relationships...
Page 748 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [PE2] mpls l2vpn Step 6 Configure VSIs on PEs. # Configure PE1. [PE1] vsi a2 static [PE1-vsi-a2] pwsignal ldp [PE1-vsi-a2-ldp] vsi-id 2 [PE1-vsi-a2-ldp] peer 3.3.3.9 # Configure PE2.
Page 749 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Ignore AcState : disable Create Time : 0 days, 0 hours, 1 minutes, 45 seconds VSI State : up VSI ID *Peer Router ID : 3.3.3.9 VC Label...
Page 750 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ip address 10.1.1.1 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of CE2 sysname CE2 vlan batch 40 interface Vlanif40 ip address 10.1.1.2 255.255.255.0...
Page 751 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Configuration file of P sysname P vlan batch 20 30 mpls lsr-id 2.2.2.9 mpls mpls ldp interface Vlanif20 ip address 168.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif30 ip address 169.1.1.1 255.255.255.0...
Page 752: Example For Configuring Kompella Vpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface GigabitEthernet1/0/0 port hybrid pvid vlan 30 port hybrid tagged vlan 30 interface GigabitEthernet2/0/0 port hybrid pvid vlan 40 port hybrid tagged vlan 40 interface LoopBack1 ip address 3.3.3.9 255.255.255.255 ospf 1 area 0.0.0.0...
Page 753 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration GigabitEthernet 2/0/0 VLANIF 30 169.1.1.1/24 Loopback1 2.2.2.9/32 GigabitEthernet 1/0/0 VLANIF 10 10.1.1.1/24 GigabitEthernet 1/0/0 VLANIF 40 10.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Configure a routing protocol on the backbone network to implement the interworking between devices and enable basic MPLS functions.
Page 754 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Step 3 Configure basic MPLS functions and LDP. For detailed configuration procedures, see the following configuration files. After the configuration, run the display mpls ldp peer command. You can find that the peer relationship is established between PE1 and P and between PE2 and P.
Page 755 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [PE1] interface vlanif 10 [PE1-Vlanif10] l2 binding vsi bgp1 # Create a sub-interface on PE2, allow the sub-interface to receive packets from VLAN 10, and bind a VSI to the sub-interface.
Page 756 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Tunnel ID : 0x20021, Broadcast Tunnel ID : 0x20021 Ckey : 0x3 Nkey : 0x1 Main PW Token : 0x20021 Slave PW Token : 0x0 Tnl Type : LSP...
Page 757 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration mpls lsr-id 1.1.1.9 mpls mpls l2vpn vsi bgp1 auto pwsignal bgp route-distinguisher 168.1.1.1:1 vpn-target 100:1 import-extcommunity vpn-target 100:1 export-extcommunity site 1 range 5 default-offset 0 mpls ldp interface Vlanif10...
Page 758 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration port hybrid pvid vlan 20 port hybrid tagged vlan 20 interface GigabitEthernet2/0/0 port hybrid pvid vlan 30 port hybrid tagged vlan 30 interface LoopBack1 ip address 2.2.2.9 255.255.255.255 ospf 1 area 0.0.0.0...
Page 759: Example For Configuring Vpls Over Te In Martini Mode
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration return 7.13.3 Example for Configuring VPLS over TE in Martini Mode Networking Requirements Figure 7-14 Networking of VPLS over TE in Martini mode Loopback1 Loopback1 Loopback1 1.1.1.9/32 3.3.3.9/32 2.2.2.9/32...
Page 760 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Interfaces to which VSIs are bound Procedure Step 1 Create VLANs and configure interfaces to allow packets of these VLANs to pass. # Configure PE1. [Quidway] sysname PE1...
Page 761 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [PE2] mpls lsr-id 3.3.3.9 [PE2] mpls [PE2-mpls] mpls te [PE2-mpls] mpls rsvp-te [PE2-mpls] mpls te cspf [PE2-mpls] quit [PE2] interface vlanif 30 [PE2-Vlanif30] mpls [PE2-Vlanif30] mpls te [PE2-Vlanif30] mpls rsvp-te [PE2-Vlanif30] quit Step 4 Configure OSPF TE on the backbone network.
Page 762 [PE1-Tunnel1/0/0] display this interface Tunnel1/0/0 current state : UP Line protocol current state : UP Description : HUAWEI, Quidway Series, Tunnel1/0/0 Interface Route Port,The Maximum Transmit Unit is 1500 bytes Internet Address is unnumbered, using address of LoopBack1(1.1.1.9/32) Encapsulation is TUNNEL, loopback not set Tunnel destination 3.3.3.9...
Page 763 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ------------------------------------------------------------------------------ PeerID Status SsnRole SsnAge KASent/Rcv ------------------------------------------------------------------------------ 3.3.3.9:0 Operational DU Passive 0000:00:06 26/26 ------------------------------------------------------------------------------ TOTAL: 1 session(s) Found. Step 7 Configure a tunnel policy. # Configure PE1. [PE1] tunnel-policy policy1 [PE1-tunnel-policy-policy1] tunnel binding destination 3.3.3.9 te tunnel 1/0/0...
Page 764 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [CE2] interface vlanif 40 [CE2-Vlanif40] ip address 10.1.1.2 255.255.255.0 [CE2-Vlanif40] quit Step 11 Verify the configuration. After the preceding configurations, run the display vsi name a2 verbose command on PE1, and you can view that the VSI named a2 has established a PW to PE2, and the VSI is in Up state.
Page 765 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration SessionID IngressLsrID 1.1.1.1 LocalLspID Tunnel-Interface Tunnel1/0/0 3.3.3.9/32 Nexthop 100.1.1.2 In-Label NULL Out-Label 9217 In-Interface ---------- Out-Interface Vlanif20 LspIndex 2048 Token 0x10080 LsrType Ingress Mpls-Mtu 1500 TimeStamp 2040sec Bfd-State Run the display vsi pw out-interface vsi a2 command on PE1, and you can view that the outbound interface of the MPLS TE tunnel between 1.1.1.9 and 3.3.3.9 is Tunnel 1/0/0, but the...
Page 766 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 0 seconds output rate 0 bits/sec, 0 packets/sec 1249 packets output, 21526 bytes 0 output error 0 output drop Input bandwidth utilization : -- Output bandwidth utilization : --...
Page 767 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration port trunk allow-pass vlan 10 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 interface Tunnel1/0/0 ip address unnumbered interface LoopBack1 tunnel-protocol mpls te destination 3.3.3.9 mpls te tunnel-id 100 mpls te reserved-for-binding...
Page 768 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration return Configuration file of PE2 sysname PE2 vlan batch 30 40 mpls lsr-id 3.3.3.9 mpls mpls te mpls rsvp-te mpls te cspf mpls l2vpn vsi a2 static pwsignal ldp vsi-id 2 peer 1.1.1.9 tnl-policy policy1...
Page 769: Example For Configuring Ldp Hvpls
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration vlan batch 40 interface Vlanif40 ip address 10.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 40 return 7.13.4 Example for Configuring LDP HVPLS Networking Requirements...
Page 770 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration GigabitEthernet 2/0/0 VLANIF 50 Loopback1 3.3.3.9/32 GigabitEthernet 1/0/0 VLANIF 10 10.1.1.1/24 GigabitEthernet 1/0/0 VLANIF 20 10.1.1.2/24 GigabitEthernet 1/0/0 VLANIF 50 10.1.1.3/24 Configuration Roadmap The configuration roadmap is as follows: Complete the task of Configuring Martini VPLS between SPEs and PEs.
Page 771 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Step 4 Enable MPLS L2VPN and configure a VSI. # Configure the UPE. <UPE> system-view [UPE] mpls l2vpn [UPE] vsi v123 static [UPE-vsi-v123] pwsignal ldp [UPE-vsi-v123-ldp] vsi-id 123 [UPE-vsi-v123-ldp] peer 2.2.2.9...
Page 772 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration After the preceding configurations, run the display vsi name v123 verbose command on the SPE. You can view that the VSI named v123 is in the Up state and the corresponding PW is also in the Up state.
Page 773 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Remote VC Label : 27648 PW Type : label Tunnel ID : 0x20022 Broadcast Tunnel ID : 0x20022 Ckey : 0x6 Nkey : 0x5 Main PW Token : 0x20022...
Page 774 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration area 0.0.0.0 network 1.1.1.9 0.0.0.0 network 100.1.1.0 0.0.0.255 return Configuration file of the SPE sysname SPE vlan batch 30 40 mpls lsr-id 2.2.2.9 mpls mpls l2vpn vsi v123 static...
Page 775 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration mpls ldp interface Vlanif40 ip address 100.2.1.2 255.255.255.0 mpls mpls ldp interface Vlanif50 l2 binding vsi v123 interface GigabitEthernet1/0/0 port hybrid pvid vlan 40 port hybrid tagged vlan 40...
Page 776: Example For Configuring Static Vlls To Access A Vpls Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration return 7.13.5 Example for Configuring Static VLLs to Access a VPLS Network Networking Requirements As shown in Figure 7-16, UPEs do not support dynamic VLLs, and access SPEs through static VLLs;...
Page 777 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Loopback1 3.3.3.9/32 UPE2 GigabitEthernet 1/0/0 VLANIF 50 100.1.4.2/24 GigabitEthernet 2/0/0 VLANIF 60 Loopback1 5.5.5.9/32 GigabitEthernet 1/0/0 VLANIF 10 10.1.1.1/24 GigabitEthernet 1/0/0 VLANIF 60 10.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Complete the task of Configuring Martini VPLS between SPEs.
Page 778 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration <P> system-view [P] ospf [P-ospf-1] area 0 [P-ospf-1-area-0.0.0.0] network 2.2.2.9 0.0.0.0 [P-ospf-1-area-0.0.0.0] network 100.1.1.0 0.0.0.255 [P-ospf-1-area-0.0.0.0] network 100.1.2.0 0.0.0.255 [P-ospf-1-area-0.0.0.0] quit [P-ospf-1] quit # Configure SPE2. <SPE2> system-view...
Page 779 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration # Configure SPE2. [SPE2] mpls lsr-id 3.3.3.9 [SPE2] mpls [SPE2-mpls] quit [SPE2] quit [SPE2] mpls ldp [SPE2-mpls-ldp] quit [SPE2] interface vlanif 40 [SPE2-Vlanif40] mpls [SPE2-Vlanif40] mpls ldp [SPE2-Vlanif40] quit...
Page 780 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ------------------------------------------------------------------------------ PeerID Status SsnRole SsnAge KASent/Rcv ------------------------------------------------------------------------------ 2.2.2.9:0 Operational DU Passive 000:00:05 24/24 3.3.3.9:0 Operational DU Passive 000:00:01 ------------------------------------------------------------------------------ TOTAL: 2 session(s) Found. Configure static LSPs between UPEs and SPEs.
Page 781 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [SPE1] vsi V100 static [SPE1-vsi-V100] pwsignal ldp [SPE1-vsi-V100-ldp] vsi-id 100 [SPE1-vsi-V100-ldp] mac-withdraw enable [SPE1-vsi-V100-ldp] peer 3.3.3.9 [SPE1-vsi-V100-ldp] peer 4.4.4.9 static-upe trans 100 recv 100 [SPE1-vsi-V100-ldp] quit # Configure SPE2.
Page 782 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VC Label : 27648 Peer Type : dynamic Session : up Tunnel ID : 0x10021 Broadcast Tunnel ID : 0x10021 CKey NKey StpEnable PwIndex *Peer Router ID : 4.4.4.9...
Page 783 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 0000-c101-0102 V100 Vlanif20 dynamic 3/3366 Total matching items displayed = 2 After VLANIF 20 of SPE1 is shut down, the VSI bound to the static VLL becomes Down.
Page 784 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration port hybrid pvid vlan 10 port hybrid tagged vlan 10 interface LoopBack1 ip address 4.4.4.9 255.255.255.255 ospf 1 area 0.0.0.0 network 4.4.4.9 0.0.0.0 network 100.1.3.0 0.0.0.255 static-lsp ingress UPE1toSPE1 destination 1.1.1.9 32 nexthop 100.1.3.1 out-...
Page 785 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration return Configuration file of P sysname P vlan batch 30 40 mpls lsr-id 2.2.2.9 mpls mpls ldp interface Vlanif30 ip address 100.1.1.2 255.255.255.0 mpls mpls ldp interface Vlanif40 ip address 100.1.2.1 255.255.255.0...
Page 786 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface Vlanif50 ip address 100.1.4.1 255.255.255.0 mpls interface GigabitEthernet1/0/0 port hybrid pvid vlan 40 port hybrid tagged vlan 40 interface GigabitEthernet2/0/0 port hybrid pvid vlan 50 port hybrid tagged vlan 50 interface LoopBack1 ip address 3.3.3.9 255.255.255.255...
Page 787: Example For Configuring Dynamic Vlls To Access A Vpls Network
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 7.13.6 Example for Configuring Dynamic VLLs to Access a VPLS Network Networking Requirements As shown in Figure 7-17, VLLs are set up between UPEs and SPEs in Martini mode. CE1 and CE2 access the full-meshed VPLS network through UPEs.
Page 788 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration GigabitEthernet2/0/0 VLANIF 40 100.1.4.2/24 Loopback1 5.5.5.9/32 GigabitEthernet1/0/0 VLANIF 50 10.1.1.1/24 GigabitEthernet1/0/0 VLANIF 60 10.1.1.2/24 Configuration Roadmap The configuration roadmap is as follows: Configure a routing protocol on the backbone network.
Page 789 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration # Configure P. <P> system-view [P] ospf [P-ospf-1] area 0 [P-ospf-1-area-0.0.0.0] network 2.2.2.9 0.0.0.0 [P-ospf-1-area-0.0.0.0] network 100.1.1.0 0.0.0.255 [P-ospf-1-area-0.0.0.0] network 100.1.2.0 0.0.0.255 [P-ospf-1-area-0.0.0.0] quit [P-ospf-1] quit # Configure SPE2.
Page 790 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [P-Vlanif10] quit [P] interface vlanif 10 [P-Vlanif20] mpls [P-Vlanif20] mpls ldp [P-Vlanif20] quit # Configure SPE2. [SPE2] mpls lsr-id 3.3.3.9 [SPE2] mpls [SPE2-mpls] quit [SPE2] mpls ldp [SPE2-mpls-ldp] quit...
Page 791 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [UPE1] mpls l2vpn [UPE1] mpls l2vpn default martini [UPE1-l2vpn] quit [UPE1] interface vlanif 50 [UPE1-Vlanif50] mpls l2vc 1.1.1.9 100 [UPE1-Vlanif50] quit # Configure UPE2. [UPE2] mpls l2vpn [UPE2-l2vpn] quit [UPE2] interface vlanif 60 [UPE2-Vlanif60] mpls l2vc 3.3.3.9 100...
Page 792 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VC last up time : 2010-01-16 10:53:02 VC total up time : 0 days, 0 hours, 7 minutes, 55 seconds CKey : 16 NKey : 15 Run the display vsi name v100 command on an SPE, and you can see that the VSI named v100 is in Up state and the PW is also in Up state.
Page 793 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration mpls lsr-id 4.4.4.9 mpls mpls l2vpn mpls l2vpn default martini mpls ldp interface vlanif 30 ip address 100.1.3.2 255.255.255.0 mpls mpls ldp interface vlanif 50 mpls l2vc 1.1.1.9 100...
Page 794 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 30 interface LoopBack1 ip address 1.1.1.9 255.255.255.255 ospf 1 area 0.0.0.0 network 1.1.1.9 0.0.0.0 network 100.1.1.0 0.0.0.255 network 100.1.3.0 0.0.0.255...
Page 795 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration mpls ldp remote-peer 1.1.1.9 remote-ip 1.1.1.9 interface Vlanif 20 ip address 100.1.2.2 255.255.255.0 mpls mpls ldp interface Vlanif 40 ip address 100.1.4.1 255.255.255.0 mpls mpls ldp interface GigabitEthernet1/0/0...
Page 796: Example For Configuring Inter-As Martini Vpls Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration return 7.13.7 Example for Configuring Inter-AS Martini VPLS Option A Networking Requirements As shown in Figure 7-18, the Option A scheme is adopted to establish the inter-AS Martini VPLS.
Page 797 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Configuration Roadmap The configuration roadmap is as follows: Run an IGP on the MPLS backbone network so that devices in the same AS can interwork. Configure basic MPLS functions on devices in the backbone network and establish dynamic LSPs between PEs and ASBR-PEs in the same AS.
Page 798 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Reply from 2.2.2.2: bytes=56 Sequence=4 ttl=255 time=60 ms Reply from 2.2.2.2: bytes=56 Sequence=5 ttl=255 time=100 ms --- 2.2.2.2 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 60/98/180 ms Step 3 Enable MPLS and configure dynamic LSPs.
Page 799 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [ASBR-PE1-vsi-a1-ldp] vsi-id 2 [ASBR-PE1-vsi-a1-ldp] peer 1.1.1.1 [ASBR-PE1-vsi-a1-ldp] quit [ASBR-PE1-vsi-a1] quit [ASBR-PE1] interface vlanif 30 [ASBR-PE1-Vlanif30] l2 binding vsi a1 [ASBR-PE1-Vlanif30] quit # Configure ASBR-PE2. [ASBR-PE2] vsi a1 static...
Page 800 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration VSI ID *Peer Router ID : 2.2.2.2 VC Label : 23552 Peer Type : dynamic Session : up Tunnel ID : 0x20020 Broadcast Tunnel ID : 0x20020 CKey...
Page 801 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 return Configuration file of PE1 sysname PE1 vlan batch 10 20 mpls lsr-id 1.1.1.1 mpls mpls l2vpn vsi a1 static...
Page 802 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration network-entity 10.0000.0000.0002.00 interface Vlanif20 ip address 100.1.1.2 255.255.255.0 isis enable 1 mpls mpls ldp interface Vlanif30 l2 binding vsi a1 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 20...
Page 803: Example For Configuring Inter-As Kompella Vpls Option A
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration sysname PE2 vlan batch 40 50 mpls lsr-id 4.4.4.4 mpls mpls l2vpn vsi a1 static pwsignal ldp vsi-id 3 peer 3.3.3.3 mpls ldp isis 1 network-entity 10.0000.0000.0004.00 interface Vlanif40 ip address 200.1.1.2 255.255.255.0...
Page 804 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration It is required to adopt Option A to implement inter-AS Kompella VPLS. The interfaces that connect ASBR-PEs serve as AC interfaces to which VSIs are bound, that is, the interfaces are exclusively used by the VPLS.
Page 805 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Configure an IGP on the backbone network to implement the connectivity between ASBR- PEs and PEs and set up tunnels between PEs. Establish MP IBGP peer relationships between PEs and ASBR-PEs in the same AS.
Page 806 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration 100.1.1.255/32 Direct 0 127.0.0.1 InLoopBack0 127.0.0.0/8 Direct 0 127.0.0.1 InLoopBack0 127.0.0.1/32 Direct 0 127.0.0.1 InLoopBack0 127.0.0.1/32 Direct 0 127.0.0.1 InLoopBack0 127.255.255.255/32 Direct 0 127.0.0.1 InLoopBack0 255.255.255.255/32 Direct 0 127.0.0.1...
Page 807 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Take the display on PE1 as an example. <PE1> display bgp vpls peer BGP local router ID : 1.1.1.1 Local AS number : 100 Total number of peers : 1...
Page 808 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration [ASBR-PE2] interface vlanif 30 [ASBR-PE2-Vlanif30] l2 binding vsi v1 [ASBR-PE2-Vlanif30] quit # Configure PE2. [PE2] vsi v1 auto [PE2-vsi-v1] pwsignal bgp [PE2-vsi-v1-bgp] route-distinguisher 200:2 [PE2-vsi-v1-bgp] vpn-target 1:1 import-extcommunity...
Page 809 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration Run the display bgp vpls all command on a PE or an ASBR-PE, and you can view information about the VPLS label block of BGP. Take ASBR-PE1 as an example.
Page 810 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration ip address 100.1.1.1 255.255.255.0 isis enable 1 mpls mpls ldp interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 10 interface GigabitEthernet2/0/0 port link-type trunk port trunk allow-pass vlan 20 interface LoopBack1 ip address 1.1.1.1 255.255.255.255...
Page 811 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface LoopBack1 ip address 2.2.2.2 255.255.255.255 isis enable 1 bgp 100 peer 1.1.1.1 as-number 100 peer 1.1.1.1 connect-interface LoopBack1 ipv4-family unicast undo synchronization peer 1.1.1.1 enable vpls-family policy vpn-target peer 1.1.1.1 enable...
Page 812 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration vpls-family policy vpn-target peer 4.4.4.4 enable return Configuration file of PE2 sysname PE2 vlan batch 40 50 mpls lsr-id 4.4.4.4 mpls mpls l2vpn vsi v1 auto pwsignal bgp...
Page 813 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 7 VPLS Configuration interface Vlanif 50 ip address 100.1.1.2 255.255.255.0 interface GigabitEthernet1/0/0 port link-type trunk port trunk allow-pass vlan 50 return Issue 01 (2011-07-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd.
Page 814: Vpls Convergence Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration VPLS Convergence Configuration About This Chapter This chapter describes the rationale, application, and configuration of VPLS convergence. 8.1 VPLS Convergence Overview This section describes the principle and concepts of VPLS convergence.
Page 815: Vpls Convergence Overview
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration 8.1 VPLS Convergence Overview This section describes the principle and concepts of VPLS convergence. The Ethernet switching technology has been mainly applied to the Local Area Network (LAN) for a long time.
Page 816 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration mVRRP The only difference between an mVRRP group and a common VRRP group is that the mVRRP group can be bound to service VRRP groups and can determine the status of a service VRRP group according to the binding relation.
Page 817 NPE and uses NPE2 as the backup NPE; the user of UPE2 uses NPE2 as the master NPE and uses NPE1 as the backup NPE. NOTE For more information about VRRP, see VRRP and VRRP6 Configuration in the Quidway S7700 Smart Routing Switch Configuration Guide - Reliability. mVRRP over mVPLS mVRRP over mVPLS indicates that mVRRP packets are transmitted by the mVSI through the mPW.
Page 818 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration the mPW between the UPE and the NPEs and forwarded by the mVSI. Other service packets are transmitted through the service PW and exchanged by the service VSI between the UPE and the NPEs.
Page 819: Configuring Vpls Convergence (Upe Directly Connected To The Npe)
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration In addition, different from the service VSI, the mVSI is used to transmit and intercept the ARP packets; therefore, you cannot shut down the mVSI. 8.3 Configuring VPLS Convergence (UPE Directly...
Page 820: Configuring The Mvsi
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration Pre-configuration Tasks Before configuring basic functions of VPLS convergence (UPE directly accesses the NPEs), complete the following tasks: Setting the LSR ID on the UPE and the NPE, enabling MPLS, and creating an MPLS LDP...
Page 821: Configuring The Binding Relations For The Mvsi
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration peer peer-address [ negotiation-vc-id vc-id ] [ tnl-policy policy-name ] upe The VSI peer relation is configured between the UPE and the NPE. The MPLS LSR ID of the NPE is configured as the peer address.
Page 822: Checking The Configuration
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration 8.3.4 Checking the Configuration Prerequisite The configurations of VPLS convergence are complete. Procedure Run the display admin-vsi binding [ admin-vsi vsi-name ] command to view the binding relations between the mVSI and the service VSIs.
Page 823: Enabling Bfd Globally
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration Data Name of the management VSI BFD name Peer IP address of the VSI PW to be detected by the BFD session BFD session parameters: local and remote discriminators 8.4.2 Enabling BFD Globally...
Page 824: Establishing Bfd Sessions
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration 8.4.4 Establishing BFD Sessions After a BFD session is established and bound to the VSI PW, you need to commit the configuration. Context Do as follows on routers at both ends of the VSI PW to be detected:...
Page 825: Maintaining Vpls Convergence
For the procedure for enabling the debugging, refer to the chapter "Information Center" in the Configuration Guide - System Management. For the description of the debugging commands, refer to the Quidway S7700 Smart Routing Switch Debugging Reference. Issue 01 (2011-07-15) Huawei Proprietary and Confidential Copyright ©...
Page 826: Configuration Examples
Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration Procedure Run the debugging mpls l2vpn vpls-forward { error-message | mac-event | vpls- event } command in the user view to enable the debugging of software-based VPLS forwarding and view the debugging information.
Page 827 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration Figure 8-4 Configuring the mVSI mVRRP VRID1 NPE2 NPE1 GE1/0/1 GE1/0/1 10.1.1.2/24 10.1.2.2/24 GE1/0/2 GE1/0/1 VLANIF 200 VLANIF 100 m VSI 10.1.1.1/24 10.1.2.1/24 GE1/0/0 GE1/0/0 LAN Switch...
Page 828 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration l Configure the routing protocol on the UPE so that reachable routes are created between the UPE and the NPEs. l Configure the basic MPLS functions on the UPE.
Page 829 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration [UPE-Vlanif200] mpls rsvp-te [UPE-Vlanif200] quit Configure IS-IS TE. # Configure the UPE. [UPE] isis 1 [UPE-isis-1] cost-style wide [UPE-isis-1] traffic-eng level-2 [UPE-isis-1] quit Set up MPLS LDP sessions.
Page 830 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration After the configuration, run the display ip interface brief command, and you can see that the protocol status of the created tunnel interface is Up. Configure the tunnel policy.
Page 831 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration Configure the service VSI and bind the service interface to the service VSI. NOTE The common HVPLS needs to be configured between the UPE and NPEs. # Configure the UPE.
Page 832 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration mpls l2vpn vsi admin-vsi1 static pwsignal ldp vsi-id 10 admin-vsi vsi biz-vsi1 static pwsignal ldp vsi-id 101 peer 2.2.2.2 peer 3.3.3.3 tnl-policy policy1 track admin-vsi admin-vsi1 mpls ldp mpls ldp remote-peer 2.2.2.2...
Page 833 Quidway S7700 Smart Routing Switch Configuration Guide - VPN 8 VPLS Convergence Configuration interface Tunnel1/0/1 description TO NPE1 ip address unnumbered interface LoopBack1 tunnel-protocol mpls te destination 2.2.2.2 mpls te tunnel-id 1 mpls te commit interface Tunnel1/0/2 description TO NPE2...

Huawei quidway s7700 Configuration Manual

About this Document

1 VPN Tunnel Management Configuration

2 GRE Configuration

3 BGP MPLS IP VPN Configuration

4 BGP MPLS Ipv6 VPN Configuration

5 VLL Configuration

Quick Links

Related Manuals for Huawei quidway s7700

Summary of Contents for Huawei quidway s7700